Protection  plan  Early  adopters  of  continuous  data 

protection  products  share  their  insights.  PAGE  14. 


Phish  food  Targeted  ‘spear  phishing'  attacks  against 
corporate  networks  are  on  the  rise.  PAGE  19. 
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If  only  they 
knew  then 
what  we  all 
know  now 

■  BY  ANN  BEDNARZ  AND 
JENNIFER  MEARS 

It’s  been  a  little  more 
than  a  decade  since 
then-rookie  analyst  Rob 
Enderle  penned  a  five-year 
forecast  of  the  operating 
system  market  that  raised 
the  ire  of  vendors  and  col¬ 
leagues.  His  report  forecast 
a  dramatic  drop-off  of  the 
Macintosh  operating  sys¬ 
tem,  along  with  declines  in 
NetWare  and  Unix. 

“That  was  the  year  that 
every  CEO  from  the  head  of 
See  Forecasting,  page  53 


i  2005  IT  BUDGET  SURVEY  ■ 

IT  budgets  bigger, 

but  not  big  enough 


■  BY  CARA  GARRETSON 

IT  budgets  for  2005  climbed  for 
almost  half  of  the  respondents  to 
a  Network  World  survey  but  that’s 
little  solace  for  most.  An  even 
larger  percentage  of  the  390  read¬ 
ers  queried  say  their  budgets  are 
inadequate. 

Of  the  fortunate  readers  who 
saw  their  budgets  grow  for  2005, 
about  one-third  got  increases  of 
5%  or  less,  while  another  third 
saw  increases  of  6%  to  10%,  and  a 
lucky  portion  of  the  remainder 


saw  increases  of  11%  or  more 
(see  graphics,  below). 

That’s  the  good  news.  The  bad 
news  is  that  34%  of  the  compa¬ 
nies  surveyed  said  their  budgets 
remained  flat  with  last  year,  while 
1 7%  saw  decreases. 

Given  the  mix,  it  isn’t  surprising 
that  many  IT  managers  feel  they 
don’t  have  the  resources  needed 
to  get  the  job  done.  Of  the  respon¬ 
dents,  9%  said  their  budgets  are 
very  inadequate,  while  another 
41%  labeled  them  somewhat 
inadequate. 


Broken  out  like  this,  the  picture 
doesn’t  look  very  rosy,  but  other 
industry  surveys  paint  a  prettier 
portrait.  Forrester  Research  ana¬ 
lyst  Andrew  Bartels  says  2005  IT 
budgets  are  up  about  4.5%  com¬ 
pared  with  last  year.  Forrester 
forecasts  IT  spending  —  what 
companies  will  spend,  not  just 
what  they  are  budgeted  to  spend 
—  will  grow  7%  this  year. 

Salaries  continue  to  be  a  huge 
line  item  for  the  respondents  of 
the  Network  World  survey, 
See  Budgets,  page  10 


Most  IT  budgets  are 
staying  the  same  or 
increasing . . . 

Budget  will  increase 
in  2005  45% 

Not  sure 

Budget  will 
decrease 
in  2005 

17% 


Budget  will  be  the  same  as  it 
was  in  200434% 


...  but  of  those  that  received  increases, 
the  bulk  are  less  than  10%. 


Number  of  respondents 


Percent  of  increase 

'  Actual  increase  has  not  been  determined  yet. 


In  general,  people  are 
not  satisfied  with  what 
they  got. 


Not  sure  3% 


Very 

inadequate 


41%  Somewhat 

inadequate  41  /o 


Microsoft 
seen  poised 
to  push 
anti-virus 


BY  ELLEN  MESSMER 


Consensus  is  building  among 
industry  watchers  that  Microsoft 
will  have  anti-spyware  and  anti¬ 
virus  products  on  the  market  for 
businesses  and  consumers  by 
year-end. 

Many  expect  Bill  Gates  to  detail 
such  a  product  rollout  during  his 
keynote  address  at  the  RSA 
Security  Conference  in  San  Fran¬ 
cisco  in  two 


■  Columnist 
Winn 

Schwartau 
weighs  in  on 
Microsoft's 
security  plans. 
Page  39. 


weeks.  Micro¬ 
soft  declined 
to  discuss  that 
prospect  last 
week. 

However, 
with  Microsoft’s  pending  security 
splash  regarded  as  a  fait  accom¬ 
pli,  anti-virus  and  anti-spyware 
vendors  are  sizing  up  their 
chances  of  withstanding  the 
Redmond  giant.  Business  cus¬ 
tomers,  stocked  up  on  anti-virus 
but  now  eager  to  buy  spyware 
protection,  wonder  if  a  Microsoft 
entry  would  drive  down  costs,  or 
if  Microsoft  —  whose  software 
seems  to  always  require  patching 
—  really  can  be  counted  on  as 
the  first  responder  in  worm  and 
virus  outbreaks. 

See  Microsoft,  page  16 


Shake  IT  up 


As  IT  takes  on  a  more  strategic  role  in  most  companies,  IT  departments  are  taking  on 
a  new  look.  Joanne  Kossuth,  CIO  at  OljnCollege,  added  a  customer  service  manager 
to  make  sure  IT  was  working  proacfltejicwith  students,  faculty  and  staff.  Page  40. 
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Fr:  planning  for  the  next  glitch 


To:  planning  for  the  next  decade 


EMC  HAS  EVERYTHING  YOU  NEED  TO  MANAGE  YOUR  INFORMATION  EFFECTIVELY 
Get  more  out  of  your  IT  resources  with  EMC.  From  world-class  services  a 
tions  to  open  software  and  proven  systems,  EMC  provides  tight  int 
full  compatibility  with  your  existing  infrastructure.  So  you  can  manage  your 


information  across  its  entire  lifecycle  while  you  manage  your  budget.  To  learn 


more,  visit  www.EMC.com. 


'  :  ' 
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We  put  a  single  platform,  mobile  data 
and  security  in  your  hands.  Now  you  can 
put  the  enterprise  in  theirs. 


Now  the  BlackBerry'  Enterprise  Solution  allows  your  business 
applications  to  be  accessed  virtually  anywhere*  Whether  it's  e-mail, 
ERP,  CRM  or  document  management  systems,  our  solution  is  built 
on  an  open,  secure  platform  that  can  wirelessly  extend  your  existing 
applications  so  you  won't  have  to  rebuild  or  replace  them  Best  of 
all,  the  BlackBerry  Enterprise  Solution  is  a  proven  platform,  deployed 
by  tens  of  thousands  of  organizations  around  t he  world,  which 
means  wireless  access  to  data  can  be  managed  by  your  II  staff 
with  more  confidence. 


Get  your  "BlackBerry 
Extensibility  Kit" 
Today! 


The  BlackBerry  Enterprise  Solution  Difference 

•  Provides  advanced  security  including  triple  DES 
encryption,  handheld  password  protection, 
wneless  IT  security  commands  and  policies 

•  Includes  server  software,  wireless  handhelds, 
wireless  service  and  support  programs 

•  Provides  flexible  application  deployment  - 
build  in-house  or  with  help  from  an  independent 
software  vendor 

•  Delivers  centralized  manageability  and 
simplified  implementation 


More  Than  Wireless  E-mail 
Order  the  BlackBerry  Extensibility  Kit  to  find 
out  how  you  can  improve  the  effectiveness  and 
efficiency  of  your  organization. 

Visit:  www.blackberry.com/go/exkit 
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CLEAR  CHOICE  ® 

TEST 


Lancope’s 
Stealthwatch 
intrusion-detection  system  keeps 
an  eye  out  for  abnormal  behavior. 

Page  43. 
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Network! 


8  IBM  building  unified  data  storage. 

8  Notes/Domino  users  see  bright  future  for  platform. 

10  Sun  cuts  Java  Enterprise  System  down  to  size. 

1 1 1s  Juniper  out  shopping  in  response  to  Cisco's  move? 

11  Start-up  puts  IT  operations  management  into  automatic. 

14  Storage  software  puts  emphasis  on  continuous  data  protection. 
14  Start-up  protects  against  Exchange  failures. 

14  Cisco  IOS  flaws  found. 

17  Vernier  sets  sights  beyond  WLANs. 

17  Report:  Out  with  old,  in  with  new  switches. 


Net  Infrastructure 

■  19  Taming  the  ever-evolving 
phish  risk. 

■  19  Spam  busters  go  on  the 
offensive. 

■  21  Kevin  Tolly:  Paying  the 
price  for  'dirt  cheap'  networking. 

Enterprise 
Computing 

■  23  NetWare/Linux  combo  wins 
approval. 

■  23  Clustering  firm  to  knock  on 
data  center  doors. 

■  24  Start-up  seeks  to  exploit 
Itanium. 

Application 
Services 

■  25  Users  grow  virtual  call 
centers. 

■  25  Software  lets  Mozilla 
collaborate. 

■  26  Scott  Bradner:  Is  it 

threat  or  availability? 

Service  Providers 

■  31  SBC  rolls  out  WAN  monitoring 
service. 


Technology  Update 

■  35  Operating  system  bypass 
eliminates  overhead. 

■  35  Steve  Blass:  Ask  Dr 

Internet. 

■  36  Mark  Gibbs:  Linux  goes 
from  small  to  tiny. 

■  36  Keith  Shaw:  Cool  tools, 
gizmos  and  other  neat  stuff. 

Opinions 

■  38  On  Technology:  At  last, 
Bernie’s  day  in  court. 

■  39  Chris  Shipley:  Tech 
trends  evoke  optimism. 

■  39  Winn  Schwartau: 

Different  vendors,  better  security. 

■  54  BackSpin:  The  Big  One: 
Millions  and  billions. 

■  54  'Net  Buzz:  SMS  provider 
hears  ka-ching  in  all  those  ring 
tones. 
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■  45  CSIRT  groups  take  on  new 
roles:  Creating  and  sustaining  a 
computer  security  incident  response 
team  calls  for  ample  preparation. 
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Breaking  News 


Go  online  for  breaking  news  every  day.  DocFinder:  6342 


Available  only  on  Fusion 

Know  a  cool  start-up? 

Nominate  your  favorite  corporate  newbie  as  a  start-up  to  watch 
for  ’05.  We'll  publish  our  annual  list  of  10  in  the  Network  World 
200  Issue,  coming  April  25.  DocFinder:  5437 

Network  whitepapers 

Want  a  vendor  view  on  the  up-and-coming  network  technologies? 
Head  over  to  our  white  paper  library,  featuring  reports  catego¬ 
rized  via  topic,  company,  date  and  more.  DocFinder:  5460 

Network  World  Fusion  Radio:  Video 
search  on  the  Web 

Google  made  headlines  last  week  with  its  new  Video  Search 
Service.  We  take  a  look  at  the  market  and  technology  behind 
video  search  with  a  start-up  and  Google  competitor  Blinkx. 

DocFinder:  4838 

Network  World  Radio  Podcasts 

Get  the  inside  scoop  on  hot  technology  issues,  such  as  inexpen¬ 
sive  servers,  WiMAX  and  network  security  design.  If  you're  not 
into  Podcasting,  stream  the  sessions  to  your  desktop  or  download 

them  as  MP3s.  DocFinder:  5334 


Online  help  and  advice 

Nutter’s  Help  Desk 

Securing  a  network  with  VLANs 

Help  Desk  Guru  Ron  Nutter  helps  a  reader  with  port  monitoring. 

DocFinder:  5463 

Tech  Spy 

Battle  of  the  button 

Toni  Kistner  examines  the  battle  brewing  between  silicon  maker 
Broadcom  and  wireless  giant  Linksys  —  all  over  a  small,  green 
button. 

DocFinder.  5464 
Home  Base 

Coming  back  to  BlackBerry 

Sandra  Gittlen  researches  the  world  of  pocket  devices. 

DocFinder:  5465 

Small-Business  Tech 

PC-powered  calls 

James  Gaskin  examines  the  pros  and  cons  of  Skype,  which  offers 
free  worldwide  computer-to-computer  calls. 

DocFinder:  5466 


Features 

Shake  IT  up:  IT  is  taking  on  a 
higher-profile  role  in  most  companies, 
which  is  leading  to  a  reorganization  of 
IT  departments  and  some  new  positior 
within  IT.  Page  40. 
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on  everything  from  blade  servers  and  enterprise  routers  to 
collaboration  platforms  and  instant-messaging  management.  Drill 
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WebEx  debuts  PC  remote  control  service 

Net.Worker  Managing  Editor  Toni  Kistner  says  remote  access 
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SBC  reportedly  courting  AT&T 

■  SBC  is  reportedly  in  talks  to  buy  AT&T  in  a  deal  that  would  cre¬ 
ate  the  largest  phone  company  in  the  U.S.  and  effectively  spell  the 
end  of  the  era  of  Ma  Bell.  Executives  from  the  companies  have 
been  in  negotiations  in  recent  weeks,  according  to  press  reports. 
SBC  would  reportedly  pay  more  than  $15  billion  for  the  telecom 
stalwart.  SBC,  a  regional  operator  with  headquarters  in  San  Antonio, 
Texas,  offers  services  in  13  states,  including  California,  Texas  and 
Illinois.  It  also  owns  60%  of  cellular  carrier  Cingular  Wireless.  The 
acquisition  would  let  SBC  improve  its  fixed-line  business  and  gain 
AT&T’s  valuable  client  list  of  corporate  and  government  customers. 
AT&T  has  been  pulling  out  of  the  consumer  market  to  concentrate 
on  its  business  customers.  Although  AT&T  is  still  the  U.SIs  largest 
long-distance  carrier,  it  has  been  facing  revenue  declines  in  recent 
quarters,  making  it  ripe  for  acquisition. 

NeuStar  looking  to  buy  Foretec  Seminars 

■  Telephone  database  operator  NeuStar  is  reportedly  in  discussions  to  purchase  Foretec 
Seminars, a  Reston,Va.,  company  that  has  managed  many  popular  high-tech  conferences 
for  clients  such  as  The  Internet  Society  and  the  IPv6  Forum.  NeuStar  operates  several  key 
databases  that  administer  telephone  numbers  for  all  service  providers  in  North  America. 
These  databases  make  it  possible  for  companies  to  keep  their  telephone  numbers  as  they 
switch  local  service  providers.The  NeuStar  subsidiary  NeuLevel  operates  the  registries  for 
the  Internet’s  .us  and  .biz  domains. Foretec  is  best  known  for  arranging  three  meetings  per 
year  for  the  IETF  the  Internet’s  premier  standards-setting  body  Although  Foretec  has  been 
providing  these  services  to  the  IETF  since  the  group’s  founding  in  1986,  the  IETF  leader¬ 
ship  has  been  unhappy  with  the  arrangement  in  recent  years  and  has  been  working  to 
create  a  new  administrative  structure  when  its  deal  with  Foretec  expires  next  year. 

BEA  to  unveil  telco  apps  server 

■  BEA  Systems  is  getting  ready  to  spill  the  details  about  its  forthcoming  telco-specific 
application  server,  code-named  Da  Vinci.  It’s  the  first  in  a  series  of  WebLogic  products 
tuned  specifically  for  vertical  industries.  Da  Vinci  is  aimed  at  helping  telecom  companies 
quickly  build  and  deploy  new  services.  Among  its  features  are  tools  for  building  SIP-based 
applications.  BEA  is  expected  to  detail  Da  Vinci  at  an  event  in  San  Francisco  next  week. 


■  i  TheGoodTheBadTheUgly 


Doggie  caller.  If  you  love  your  pet  and  wireless,  you'll  dig  the  PetCell  by 
PetsMobility.  PetCell  attaches  to  your  dog's  collar  and  accepts  calls  from  pre- 
aka  you.  This  lets  you  call  your  pup  and  say  hi  or,  most  likely, 


Z.  JONES 


&  Losing  laptops.  If  you  lost  your  laptop  in  London,  chances  are  you  left 
it  in  the  cab.  At  least  that’s  the  case  according  to  Taxi  magazine,  which  polled  900 
cabbies  across  the  globe  on  what  gets  left  behind  in  the  back  seat.ln  the  past  six 
months  in  London,  63,135  mobile  phones,  5,838  PDAs  and  4,973  laptops  were 
unintentionally  abandoned. 


Aiming  at  Apple.  Spammers  might  be  evil,  but  they're  not  stupid.  Well, 
most  of  them  aren’t.  Clearswift’s  latest  spam  analysis  report  says  spammers  jumped 
on  the  red-hot  iPod  bandwagon  for  the  holiday  season.  “News  of  stock  running  out 
in  December  coincided  with  the  flood  of  e-mails  claiming  to  sell  limited  edition  or 
heavily  discounted  iPods,"  the  security  company  noted. 


Also  on  tap  from  BEA  this  year  is  a  manufacturing-oriented  server  —  code-named  RipCurl 
—  designed  to  help  automate  processes  associated  with  radio  frequency  identification 
technology  such  as  managing  devices  and  filtering  RFID  data. 

Lawmakers  eye  IBM/Lenovo  PC  deal 

■  The  acquisition  of  IBM’s  PC  business  by  China’s  largest  PC  maker,  Lenovo  Group,  might 
pose  a  threat  to  U.S.  national  security  and  deserves  a  closer  review  by  Congress  and  gov¬ 
ernment  agencies  before  a  decision  is  made  on  whether  to  approve  the  deal,  three  U.S. 
lawmakers  said  last  week.Their  concerns  were  set  out  in  a  letter  sent  to  Treasury  Secretary 
John  Snow  and  signed  by  three  Republican  congressmen:  House  International  Relations 
Committee  Chairman  Henry  Hyde,  House  Armed  Services  Committee  Chairman  Duncan 
Hunter  and  House  Small  Business  Committee  Chairman  Don  Manzullo.  Specifically  the 
congressmen  worry  that  the  $1. 75-billion  deal  could  transfer  advanced  technology  and 
corporate  assets  to  the  Chinese  government,  along  with  licensable  or  export-controlled 
technology  and  might  result  in  certain  U.S.  government  contracts  involving  PCs  being  ful¬ 
filled  by  the  Chinese  government,  according  to  a  statement  released  by  the  House  Armed 
Services  Committee. 


“No  cheating  on  my  low-carb  diet.  Now 
they  Coin  track  my  every  move!” 


Heather  Real  of  Houston  wins  this 
week's  carb-free  Weekly  Caption 
Contest  with  her  winning  words.  Check 
back  every  Monday  for  the  start  for 
the  week's  new  photo. 
www.nwfusion.com/weblogs/layer8 


Bug  taking  aim  at  MySQL  database 

■  A  new  worm-like  threat  is  spreading  on  the  Internet  and  targeting  computers  that  run 
the  MySQL  open  source  database  software.  Thousands  of  Windows  machines  that  run 
MySQL  have  been  infected,  according  to  one  security  expert.The  new  pest  is  a  version  of 
a  common  network  worm  named  “Forbot.”  It  infects  machines  by  exploiting  loosely 
secured  MySQL  installations  running  on  Windows  machines  connected  to  the  Internet. 
The  new  Forbot  variant  is  one  of  the  first-known  examples  of  an  automated  Internet 
threat  that  targets  MySQL  and  could  infect  machines  running  a  range  of  database 
applications  that  use  MySQL,  according  to  Joe  Stewart,  a  senior  security  researcher  at 
LURHQ.  MySQL  is  an  open  source  database  software  program  that  is  managed  by 
MySQL  AB. 
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IBM  building  unified  data  storage 

Move  will  lower  data  integration  costs,  help  with  compliance  regulations,  company  says. 


■  BY  JOHN  FONTANA 

ORLANDO  —  IBM/Lotus  is 
working  on  a  unified  content  stor¬ 
age  system  that  will  be  a  key  part 
of  its  future  collaboration  plat¬ 
form  and  let  corporations  equip 
applications  with  standards- 
based  access  to  data  no  matter 


the  format  or  where  it  is  stored. 

The  unified  content  store  tech¬ 
nology  known  as  Java  Content 
Repository  (JCR),  is  being  built 
on  the  back  of  Java  Specification 
Request  (JSR)  170,  an  emerging 
standard  for  accessing  content 
repositories. 

The  benefit  for  users  that  build 


Notes/Domino  users 
see  a  bright  future 
for  the  platform 

■  BY  JOHN  FONTANA 


ORLANDO  —  Notes/Domino  users  say  they  feel  good  about  the 
health  of  their  chosen  collaboration  platform  after  IBM/Lotus  laid  out 
its  road  map  at  last  week’s  Lotusphere  conference. 

“Two  years  ago,  I  had  a  lot  more  doubt  than  I  have  nowf  said  James 
Wagner,  vice  president  and  IS  audit  manager  at  National  City  in 
Cleveland.“Now  I  have  a  good  feeling  that  they  have  made  a  commit¬ 
ment  to  the  platform.” 

IBM/Lotus  showed  off  Notes/Domino  7,  which  is  slated  to  ship  in  the 
fall.  It  includes  a  new  administrative  tool,  Domino  Domain  Manager, 
deeper  support  for  Web  services  and  the  availability  of  the  Notes  7.0 
client  within  the  new  Workplace  Client  Technology  which  allows  the 
Notes  client  to  operate  within  Workplace. 

The  company  also  previewed  Notes  7.5,  with  promised  Workplace 
plug-ins  for  Linux  and  Macintosh  clients,  and  Notes  8,  which  will  unify 
the  client  code  base  and  bake  the  Notes  client  into  the  Workplace 
Client  Technology 

“There  is  no  longer  a  dual  highway  fear  factor’’  said  Mike  Gotta,  an 
analyst  with  Meta  Group.“Notes  users  can  feel  good  about  going  down 
the  road  to  Notes  7.” 

That’s  a  positive  for  National  City’s  Wagner,  who  said  he  doesn’t 
want  to  leave  the  Notes  platform  mostly  because  of  migration  and 
developers  expertise  costs,  but  in  part  because  the  alternative  seems 
half-baked. 

“There  doesn’t  seem  to  be  a  whole  lot  to  Workplace  yet, ’’Wagner  said. 

Others  echoed  those  sentiments  by  saying  the  right  thing  is  to 
strengthen  Notes. 

“When  Workplace  was  first  announced,  there  was  a  lot  of  confusion 
about  the  future  of  Notes, ’’said  Steven  Meeks, an  IT  systems  architect  for 
a  soft  drink  bottling  company  in  Sydney  Australia.  “Now  they  have 
shown  that  Notes  is  here  to  stay’ 

Meeks  said  IBM/Lotus  has  to  show  evidence  of  customer  implemen¬ 
tations  before  he  will  take  a  serious  look  at  Workplace,  although  he 

likes  the  managed  client  that 
would  make  it  easier  to  push  out 
updates  to  desktops. 

“It’s  clear  the  two  platforms  could 
meld  at  some  point,”  he  said. 

Although  most  Notes  talk  fo¬ 
cused  on  the  client  and  develop¬ 
ment  tools,  Lotus  Software  General 
Manager  Ambuj  Goyal  said  the 
server  is  not  being  ignored.  “Dom¬ 
ino  will  be  enhanced  and  moved 
forward.  Notes  does  not  work  with¬ 
out  Domino,”  he  said.B 
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applications  on  IBM’s  emerging 
Workplace  platform  will  be  lower 
data  integration  costs  and  greater 
reuse  of  data,  which  should  result 
in  richer  applications  that  blend 
structured  and  unstructured  data, 
according  to  company  officials. 
Other  benefits  could  include 
reduced  data  management  and 
help  with  meeting  regulatory 
compliance  rules. 

“We’re  doing  this  for  the  same 
reason  you  don’t  want  to  migrate 
applications,”  says  Ambuj  Goyal, 
general  manager  of  Lotus  Soft¬ 
ware.  “There  is  no  business  value 
in  moving  data.  What  you  want  is 
access.” 

The  concept  of  a  unified  reposi¬ 
tory  that  contains  both  structured 
and  unstructured  data  is  not  new 
to  Notes/Domino  users.That  con¬ 
struct  has  been  a  hallmark  of  the 
platform  since  it  was  introduced 
15  years  ago. 

IBM/Lotus  says  the  unified  con¬ 
tent  store  is  another  feature  that 
will  help  Notes/Domino  users 
ease  integrations  with,  and  transi¬ 
tions  to,  the  Workplace  platform. 

The  JSR  170  specification  will 
have  multiple  implementations, 
according  to  IBM  officials,  includ¬ 
ing  in  Notes/Domino  products 
such  as  Domino  Document  Man¬ 
ager,  in  the  Java-based  Workplace 
Collaboration  Services  platform 
and  in  IBM  Content  Manage¬ 
ment,  a  massive  repository  that 
can  scale  to  petabytes  of  data. 

IBM  in  November  released  its 
first  product  with  JSR  170  support 
when  it  shipped  WebSphere  Por¬ 
tal  Server  5. 1 .  Domino  Document 
Manager  7.0,  which  is  slated  to 
ship  in  the  fall,  will  have  JSR  170 
support  but  initially  for  read-only 
mode.  Support  of  JSR  170  in 
Workplace  Collaboration  Serv¬ 
ices  is  expected  in  the  follow-up 
release  to  the  2.5  version,  set  to 
ship  before  April  1 . 

Company  officials  say  they  will 
build  JCR  technology  on  top  of 
Domino’s  Notes  Storage  Format 
(NSF),  although  they  are  still  test¬ 
ing  the  limitations. 

“We  don’t  know  yet  if  we  can 
make  any  arbitrary  application 
map  NSF  to  the  JSR  specifica¬ 
tion,”  says  Doug  Wilson,  CTO  at 
Lotus  Software. 

The  multiyear  JCR  project 
would  eventually  replace  any 
proprietary  methods  IBM  has  for 
retrieving  and  storing  structured 
and  unstructured  content  in  IBM 
repositories. 


■ 

Content  delivery 

IBM  is  developing  a  unified  data  storage  model  on  the 
back  of  Java  Specification  Request  170,  a  standard  ‘ 
accessing  content  in  a  repository.  Meanwhile,  the  ^ 
Community  Process  developing  JSR  170  is  f 
include  new  functions  such  as  these: 


In-depth  read/Write  access:  Bi-directional  inter 

with  content  elements. 

Full-text  search  and  filtering:The  entire  (r 

content  of  the  repository  could  be  indexed  to  support  \ 
search  methods. 

Access  control:  Unified,  extensible,  access  < 
mechanisms  to  get  into  the  repository. 

Unking:  A  standard  mechanism  to  soft/hard  link  Hems  and 
properties  in  a  repository,  along  wHh  providing  a  r 
to  create  relationships  in  the  repository. 
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“This  could  help  companies 
create  more  uniform,  corporate¬ 
wide  information  life-cycle  en¬ 
forcement,  which  is  increasingly 
important  in  an  elevated  regula¬ 
tory  climate,”  says  Matt  Cain,  an 
analyst  with  Meta  Group.  “It  can 
also  lead  to  better  knowledge 
management  and  create  better 
accessibility,  since  a  common 
mobility  layer  could  push  out 
multiple  content  types.” 

The  unified  content  model  is  a 
back-end  necessity  for  building 
composite  applications,  which 
draws  code  and  data  from  many 
sources  as  part  of  Workplace’s  ser¬ 
vice-oriented  architecture. 

“JSR  is  quite  profound,”  Wilson 
says.  “It  provides  many  pathways 
to  access,  reuse  and  repurpose 
content  from  one  system  to 
another’ 

For  example,  Wilson  says  users 
would  be  able  to  take  ad  hoc 
data,  such  as  a  discussion  thread 
stored  in  Lotus  Team  Workplace, 
and  make  it  available  to  a  records 
retention  system  without  having 
to  move  the  data. 

“The  subtlety  is  that  when  users 
create  content  they  do  not  know 
where  it  will  be  used, ’’Wilson  says. 
He  says  the  idea  is  to  blend  data 
and  its  accompanying  metadata 
to  aid  search  and  retrieval,  and 
unlock  content  from  repositories 
such  as  document  libraries,  form- 
based  applications,  and  discus¬ 
sion  databases. 

“In  Windows,  many  databases 
can  be  accessed  with  ODBC  dri¬ 
vers.  In  Java,  JDBC.  JSR  170  is  the 


content  store  equivalent,”  Wilson 
says. 

IBM  isn’t  pioneering  the  unified 
content  store,  but  it  is  on  a  fast 
track  toward  rolling  it  out. 

JSR  1 70  is  an  effort  under  way  at 
the  Java  Community  Process  to 
define  a  standard  interface  for 
content  management  systems. 
More  than  50  vendors,  including 
IBM,  are  developing  the  specifica¬ 
tion,  which  is  nearing  release  of 
Version  2.0. 

Oracle  is  working  on  the  same 
unified  content  store  concept 
using  the  same  JSR  170  specifica¬ 
tion,  but  it  envisions  a  single-data 
store  built  on  top  of  a  database. 

Microsoft  tried  to  create  a  uni¬ 
fied  content  storage  model 
around  its  Yukon  technology 
(now  SQL  Server  2005),  now  a 
defunct  plan  for  an  Exchange  ver¬ 
sion  called  Kodiak.  It  never 
shipped,  and  now  the  focus  is  on 
Windows  Future  Storage  (Win- 
FS),  which  is  not  expected  to  be 
released  until  2006  or  later. 

IBM  already  has  a  data  and  con¬ 
tent  integration  product  called 
WebSphere  Information  Integra¬ 
tor,  which  is  similar  in  concept  to 
its  JCR  plans.  ■ 


Correction 


■  In  the  Polycom  brief  (Jan.  24, 
1  page  17)  the  pricing  for  the  Poly- 
|  com  SoundStation  IP  4000  should 
|  have  been  listed  as  SI  ,099. 
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Sun  brings  software  into  spotlight 

Company  set  to  rollout  new  middleware,  grid  offerings. 


■  BY  JENNIFER  MEARS 

Sun  this  week  is  expected  to 
highlight  its  efforts  to  change  the 
way  customers  buy  and  deploy 
data  center  resources,  rolling  out 
new,  $50-per-employee  middle¬ 
ware  packages  and  expanding  its 
Sun  Grid  offerings. 

The  announcements  expected 
at  Sun’s  news  event  Feb.  1  come 
on  the  heels  of  news  last  week 
that  the  company  was  making 
good  on  its  promise  to  turn  over 
its  Solaris  10  operating  system  to 
the  open  source  community 

CEO  Scott  McNealy  said  last 
week  that  Sun  was  releasing 
Solaris  10  source  code  under  the 
Open  Source  Initiative-approved 
Common  Development  and 
Distribution  License  (CDDL)  that 
Sun  created.  He  also  highlighted 
the  fact  that  Sun  was  releasing 
more  than  1 ,600  patents  related  to 
the  Unix-based  operating  system. 

The  move  is  aimed  at  removing 
intellectual  property  rights  as  a 
barrier  to  innovation,  he  says. 

“Sun  is  assigning  our  1 ,600  [op¬ 
erating  system] -related  patents  to 
the  CDDL  licensees  that  allows 
them  to  operate  in  a  safe  haven 
environment,  a  safe  harbor,”  he 
says. 

The  code  will  be  available  at 
the  OpenSolaris  community  Web 
site  at  www.opensolaris.org.  Code 
for  the  new  DTrace  diagnostic 
tool  in  Solaris  10  is  available,  but 
the  rest  of  the  code,  about  10  mil¬ 
lion  lines,  won’t  come  until  the 
second  quarter. 

The  commercial  version  of 
Solaris  10  has  yet  to  ship,  although 
Sun  is  expected  to  announce  gen¬ 
eral  availability  of  the  operating 
system  within  the  next  few  weeks. 
Sun  will  continue  to  enhance  its 
branded  Solaris  product  and  pro¬ 
vide  services  and  support  be¬ 
cause  most  corporate  users  likely 
won’t  make  the  move  to  Open¬ 
Solaris. 

“By  and  large  [enterprise  users] 
are  going  to  continue  to  buy  the 
commercially  supported,  certified 
Solaris,”  says  Gordon  Haff,an  ana¬ 
lyst  at  Illuminata.  “For  them  the 
benefits  of  OpenSolaris  are  longer 
term,  if  it’s  successful  —  revitaliza¬ 
tion  of  the  brand  and  a  more  vi¬ 
brant  development  community 
interacting  with  and  contributing 
to  it.” 

As  for  Sun’s  middleware,  the 
company  is  adding  support  for 
Windows  and  HP-UX  to  its  Java 


Enterprise  System  infrastructure 
software  stack  and  also  adding 
features  such  as  an  updated  appli¬ 
cation  server^  identity  manage¬ 
ment  and  its  N1  grid  service  pro¬ 
visioning  system. 

The  features  will  step  up  perfor¬ 
mance  and  make  it  easier  for  cor¬ 
porations  to  deploy  the  software, 
says  Joe  Keller,  vice  president  of 
marketing  for  application  and 
developer  platforms  at  Sun.  The 
N1  grid  service  provisioning  sys¬ 
tem  will  let  users  run  installs 
across  the  data  center.  Today, 
developers  must  write  scripts  to 
install  Sun’s  software  on  each  serv- 


Budgets 

continued  from  page  1 

accounting  for  an  average  of  29% 
of  their  budgets.  Almost  half  of 
the  survey  takers  increased  their 
salary  line  this  year,  while  most  of 
the  rest  kept  it  flat,  and  a  few  cut 
back. 

In  terms  of  employment,  66%  of 
respondents  said  they  plan  no 
change  to  IT  head  count.  But  2 1  % 
said  they  will  add  employees  this 
year,  while  less  than  8%  said  they 
would  cut  staff. 

Interestingly  enough,  on  aver¬ 
age  only  6%  of  representative 
2005  IT  budgets  is  devoted  to 
contract  labor,  which  for  40%  of 
the  respondents  is  the  same  as 

2004  allocations  and  is  a 
decrease  for  another  20%. 

Capital  equipment  is  the  sec¬ 
ond-largest  IT  budget  line  item, 
accounting  for  an  average  of  25% 
of  2005  financial  resources. 

Asked  to  comment  on  specific 
spending  plans  for  three  of  the 
hottest  network  categories  — 
security,  VoIP/convergence  and 
wireless  —  a  whopping  59%  said 
they  will  spend  more  on  security 
than  they  did  last  year.. 

And  finally  with  the  bitter  taste 
of  regulation  compliance  still 
fresh  in  the  mouths  of  public 
companies  exiting  2004,  we 
asked  respondents  what 
resources  they  would  dedicate  in 

2005  to  complying  with  federal 
regulations  such  as  the  Sarbanes- 
Oxley  Act. 

For  companies  regulated  by 
such  acts,  71%  of  the  respondents 
made  no  budget  changes  for 
compliance  in  2005,  while  some 
cut  back  resources,  suggesting 
companies  are  getting  ahead  of 
the  compliance  curve.  ■ 


er.“How  do  you  roll  out  across  100 
servers?”  Keller  says.  “This  is  the 
automation  tool  for  orchestrating 
that  across  the  data  center? 

Java  Enterprise  System,  which 
will  be  upgraded  for  free  for  cur¬ 
rent  customers,  will  be  available 
by  subscription  for  $140  per 
employee,  per  year. 

Sun  also  is  introducing  Java 
System  Suites  that  target  specific 
business  needs  —  such  as  ident¬ 
ity  management  or  transaction- 
based  Web  applications  —  to  give 
users  an  easier  entry  into  the  Java 
Enterprise  System. 

“For  the  vast  majority  of  enter¬ 


prises  ...  it  is  very  difficult  to  make 
wholesale  changes,  so  things 
need  to  be  done  on  a  more  grad¬ 
uated  basis,”  says  Dana  Gardner, 
an  analyst  with  The  Yankee  Group. 

If  an  organization  wants  to  ad¬ 
dress  identity  management,  for 
example,  they  might  not  want  the 
entire  Java  Enterprise  System 
stack.“But  they  may  be  interested 
in  a  solution  set  of  say  four  or  five 
servers  that  will  help  them  ac¬ 
complish  their  identity  manage¬ 
ment  directory  issues.  It  makes  a 
whole  lot  of  sense  for  Sun  to  pack¬ 
age  things  this  way?  Gardner  says. 

The  Java  System  Suites  will  be 


available  by  subscription  at  $50 
per  employee,  per  year. 

The  company  is  expected  to 
unveil  a  storage  offering  as  part  of 
the  its  N1  Pay-Ber-Use  Grid  Com¬ 
puting  service,  which  Sun  is 
expected  to  make  available  with¬ 
in  the  next  two  months.  Sun  intro¬ 
duced  its  pay-per-use  grid  offering 
in  the  fall,  billing  it  as  a  conve¬ 
nient  way  for  customers  to  pur¬ 
chase  compute  cycles  for  as  little 
as  $1  per  CPU,  per  hour. 

IDG  News  Service  correspondent 
Robert  McMillan  contributed  to 
this  report. 


2005  IT  BUDGET  SURVEY! 

Network  World  surveyed  390  readers  about  their  IT  budgets  and  found: 


Readers  are  allocating  funds  across 
multiple  functions. . . 

Other  4% 

Training  and 
education  5% 

Contract  labor  6% 


...  and  spending  is  rising  more  in  some 
sectors  than  others. 


Teleco/data 
lines/remote 
access  10% 

Operations*  21% 

'Software/hardware  maintenance  and  support. 


Salaries  29% 


Capital 

equipment 

25% 


More 
than  ’04 

Less 
than '04 

Same 
as  ’04 

Net 

snre 

Capital  equipment 

38% 

20% 

37% 

5% 

Operations* 

30% 

18% 

49% 

3% 

Salaries 

41% 

6% 

43% 

10% 

Contract  labor 

12% 

19% 

40% 

29% 

Teleco/data  lines/remote  access 

19% 

20% 

51% 

10% 

Tech  R&D 

9% 

14% 

40% 

37% 

Training  and  education 

14% 

18% 

56% 

12% 

Other 

7% 

7% 

36% 

50% 

‘Software/hardware  maintenance  and  support. 


Rrms  that  are  making  capital  investments 
are  doing  so  for  a  variety  of  reasons . . . 

Other  2% 


Not  making  capital 
investments  in  2005  4% 


Launch  new 
products/make 
money  7% 

Replace  existing 
systems/maintain 
status  quo  46% 


...  while  security  and  wireless  continue  to 
be  two  of  the  hottest  areas  for  rivestment 

%  of  respondents  spending 


Increase 
productivity/ 
save  money 

41% 


Mere 
than  ’04 

Less 
than  ’04 

Same  as  ’04 

Net  sore 

Security 

59% 

1% 

38% 

2% 

VolP/Convergence 

27% 

2% 

52% 

19% 

Wireless  initiatives 

40% 

3% 

48% 

9% 

In  terms  of  employment,  some  companies  ...  and  a  few  will  add  significantly. 

plan  tO  add  jobs  .  .  .  Companies  adding  staff 

Not  sure  5% 

Decrease  in 
number  of 
employees 

8% 


No  change  66% 


Increase  in 
number  of 
employees 
21% 


1%-2%  3% -4%  5% -7%  8%  - 10% 


11%  or 
more 


Not  sure 
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Is  Juniper  out  shopping? 


What  they  offer 

Which  WLAN  products  will  Juniper  choose? 


Company 

Aruba 

Products 

Modular,  stackable  and  fixed  configuration  WLAN  switches. 

802.1  la/b/g  access  point. 

Grid  point  and  grid  controllers  for  centralized  interior 
security,  mobility  and  WLAN  services. 

Colubris 

802.11a/b/g  access  points  for  public  WLAN  and  enterprise 
Wi-Fi  applications. 

Access  controllers  for  user  authentication,  service 
presentation  and  billing. 

Existing  integration  with  Juniper’s  E-series  routers,  SDX- 
300  management  platform  and  NetScreen  firewall/VPN 
systems. 

Wi-Fi  access  points  and  switches. 

Trapeze 

Software  that  supports  Layer  2  services  and  Layer  3-7 
“awareness”. 

Tool  suite  for  planning,  deploying  and  maintaining  the 
wireless  infrastructure. 

■  BY  JIM  DUFFY 

Ever  since  Cisco  acquired  wire¬ 
less  LAN  switch  maker  Airespace 
three  weeks  ago,  speculation  has 
swirled  about  how  router  rival 
Juniper  might  respond. 

It’s  no  secret  that  Juniper,  which 
until  its  acquisition  of  security 
vendor  NetScreen  Technologies 
last  year  focused  exclusively  on 
the  service  provider  market,  is 
looking  to  raise  its  profile  in  enter¬ 
prise  networking.  Juniper  also  is 
shipping  a  new  line  of  access 
routers  developed  for  enterprise 
networks. 

Analysts  expect  Juniper  to 
acquire  companies  this  year  to 
deepen  its  reach  into  the  enter¬ 
prise  market  —  specifically  in 
hot  segments  such  as  VoIP  and 


Juniper 

bugged 


uniper  last  week 
warned  M-  andT-Series 
router  customers  that 
run  releases  of  Junos  soft¬ 
ware  developed  before  Jan.  7 
to  upgrade  the  software  or 
suffer  a  “serious  security 
vulnerability.” 

"This  vulnerability  could  be 
exploited  either  by  a  directly 
attached  neighboring  device 
or  by  a  remote  attacker  that 
can  deliver  certain  packets 
to  the  router,"  according  to  a 
Juniper  Technical  Bulletin 
obtained  by  Network  World. 
"Routers  running  vulnerable 
Junos  software  are  suscepti¬ 
ble  regardless  of  the  router’s 
configuration.  It  is  not  possi¬ 
ble  to  use  firewall  filters  to 
protect  vulnerable  routers.” 

Juniper  has  assigned  a  risk 
level  of  "high”  to  this  vulnera¬ 
bility.  The  bug  is  a  blow  to 
Juniper,  which  prides  itself  on 
the  stability  and  reliability  of 
its  software,  especially  when 
compared  with  Cisco’s  IOS 
(see  related  story,  page  14). 

All  versions  of  Junos  soft¬ 
ware  built  on  or  after  Jan.  22 
contain  the  modified  code, 
the  bulletin  states,  while  soft¬ 
ware  built  between  Jan.  7 
and  Jan.  22  might  contain  the 
modified  code,  depending  on 
the  specific  Junos  release. 

—  Jim  Duffy 


WLANs.  Of  those,  the  urgency  to 
enter  the  WLAN  market  was 
heightened  after  Cisco’s  $450 
million  acquisition  of  Airespace. 
Even  if  Cisco  did  not  acquire 
Airespace,  any  company  with 
enterprise  aspirations  would 
need  a  wireless  offering,  ana¬ 
lysts  say. 

“Wireless  is  going  to  become 
the  default  network  connection 
for  most  enterprise  users,  for 
both  voice  and  data,”  says  Craig 
Mathias,  a  consultant  at  Farpoint 
Group.  “So  an  enterprise  net¬ 
working  firm  without  a  strong 
solution  in  wireless  isn’t  going 
to  be  a  strong  [one] .” 

So  who  is  Juniper  looking  at? 
Published  speculation  has  the 
company  eyeing  WLAN  switch 
makers  Aruba  Wireless  Networks 
and  Trapeze  Networks. 

Curiously,  this  speculation  did 
not  mention  Colubris  Networks, 
a  maker  of  802.1  la/b/g  access 
points,  gateways  and  controllers 
for  corporations  and  service 
providers  that  has  a  two-year-old 
joint  development  arrange¬ 
ment  with  Juniper.  Through 
this  arrangement,  Colubris  is 
Juniper’s  WLAN  offering  — 
Juniper  sales  and  engineering 
personnel  have  received 
Colubris  product  training; 
and  Juniper’s  Web  site 
contains  sales  and  marketing 
literature  on  a  joint  Colubris/ 
NetScreen  product. 

“Colubris  is  probably  the  most 
logical  acquisition  target,  par¬ 
tially  because  Colubris  has 
done  very  well  on  the  public 
network  space  —  which  is  a 
place  where  Juniper  obviously 
excels  —  and  then  they  also  do 
fairly  well  in  the  enterprise,”  says 
Abner  Germanow,  an  analyst  at 
IDC. “There  are  probably  quite  a 
few  [enterprise  accounts]  that 
have  Colubris  and  have 
NetScreen”  products. 

One  of  them  could  be  McDon¬ 
ald’s  Canada,  which  —  according 
to  a  customer  profile  on  the  Juni¬ 
per  Web  site  —  uses  NetScreen 
firewall  and  IPSecVPN  systems  to 
secure  its  central  ordering,  e-mail 
and  credit/debit  systems.  McDon¬ 
ald’s  Canada  is  also  looking  to 
secure  a  wireless  hot  spot  net¬ 
work  it  deployed  for  its  upper 
echelon  McCafe  customers, 
according  to  the  profile. 

McDonald’s  Canada  declined 
requests  to  interview  Gene  Genin, 
vice  president  of  IT  at  the  fast 
food  giant,  for  this  story 

Juniper  and  Colubris  declined 


to  comment  on  a  possible  mar¬ 
riage.  Aruba  also  declined  to 
comment  on  the  published  spec¬ 
ulation  that  it  was  a  possible 
acquisition  target  of  Juniper’s. 

Trapeze,  which  already  has  a 
relationship  with  3Com,  says  it’s 
being  approached  by  a  number 
of  vendors. 

“We’re  talking  to  a  lot  of  differ¬ 
ent  people  but  unfortunately,  it’s 
all  under  [non-disclosure  agree¬ 
ment],”  says  Bruce  Van  Nice, 
Trapeze  vice  president  of  world¬ 
wide  marketing.  “There’s  a  new 
sense  of  urgency”  among  these 
vendors  since  Cisco’s  acquisi¬ 
tion  of  Airespace,  he  says. 

Trapeze  and  Aruba  have 
broader  WLAN  switch  offerings 
than  Colubris,  while  Colubris 
has  the  more  sophisticated 
access  point  technology,  ana¬ 
lysts  say.  Thus,  Juniper  could 
purchase  two  WLAN  compa¬ 
nies  for  their  respective 
strengths. 

“You  could  actually  acquire 
both  companies  and  have  a  focus 
on  carrier  hot  spots,  enterprise” 
and  other  applications,  such  as 
mobile  access  routers  for  airlines, 
says  Joel  Conover,  an  analyst  at 
Current  Analysis. 

Another  possible  candidate  to 
fill  out  Juniper’s  switching  side 
is  Extreme  Networks,  which 
makes  both  LAN  and  WLAN 
switches.  Speculation  on  a 


Juniper/Extreme  union  surfaces 
every  now  and  then. 

But  until  Juniper  makes  its 
move,  it  continues  to  jointly 
develop  and  market  an  enterprise 
secure  wireless  offering  with 
Colubris.  The  integration  of  Colu¬ 
bris  WLAN  access  devices  with 
Juniper’s  NetScreen  firewall/VPN 
appliances  is  designed  to  let  com¬ 
panies  segment  traffic,  and  apply 
a  range  of  network  and  applica¬ 
tion  security  policies,  based  on 


user  authentication,  application 
type  and  network  destination. 

For  public  WLAN  services, 
Juniper  and  Colubris  combine 
the  Colubris  CN3000  access 
devices  with  Juniper’s  E-Series 
broadband  edge  routers  and 
SDX-300  Service  Deployment 
System  to  let  service  providers 
handle  access  point  manage¬ 
ment,  user  authentication  and 
access  control  from  a  central 
location.  ■ 


Start-up  eyes  IT  operations 


■  BY  DENISE  DUBIE 

Newcomer  Optinuity  has  its  eye  on  helping  net¬ 
work  executives  speed  problem  resolution,  instill 
better  processes  and  more  efficiently  manage  IT 
operations.  The  company  this  week  is  expected  to 
unveil  software  that  documents  and  automates  exist¬ 
ing  manual  procedures. 

Optinuity  says  its  C20  offering  will  help  automate 
IT  production  tasks  ranging  from  running  batch 
jobs,  to  rebooting  a  server  to  troubleshooting  appli¬ 
cation  performance  problems.  The  centralized 
server  software  monitors  and  measures  actual  tasks 
against  pre-defined  models  of  IT  processes  and  jobs 
by  using  data  collected  by  software  agents  distrib¬ 
uted  on  application,  Web  and  other  production 
servers  across  an  enterprise  data  center.  C20  uses 
proxy  servers  to  monitor  actions  on  routers  and 
other  devices  onto  which  software  agents  cannot  be 
installed. 

The  software  lets  Mike  Evans, a  C20  beta  tester  and 
CIO  at  the  Oklahoma  Employment  Security  Com¬ 
mission  in  Oklahoma  City  allocate  staff  resources  to 
more  important  IT  jobs.  In  the  past,  he  says  his  staff 
of  47  depended  on  paper  flowcharts  that  detailed 


processing  jobs  that  had  to  be  run  to  support  the 
state  agency’s  unemployment  claims,  tax  collection 
and  other  applications.  Previously  he  would  have  to 
assign  a  systems  administrator  to  work  overnight 
and  monitor  if  a  job  ran  accurately 

“Mainly  we  need  to  know  jobs  are  being  run  in  the 
correct  order,  and  the  software  helps  us  automate 
the  scheduling  and  eliminated  the  human  error  we 
experienced  when  jobs  ran  out  of  order;”  he  says.“As 
a  state  agency  that’s  important  because  we  don’t 
have  a  lot  of  extra  money  to  pay  personnel.” 

The  software  also  works  in  his  heterogeneous  envi¬ 
ronment,  which  includes  a  Bull  mainframe  that  he 
says  might  not  have  been  easy  to  manage  with  soft¬ 
ware  from  the  likes  of  IBM,  one  of  Optinuity’s  poten¬ 
tial  competitors.  Mercury  Interactive  and  its  IT  gov¬ 
ernance  product  line  could  represent  another  com¬ 
petitor  down  the  road  for  the  Bethesda,Md., start-up. 
Like  Optinuity,  Mercury  includes  features  in  its  appli¬ 
cation  management  software  that  let  IT  managers 
incorporate  their  knowledge  of  a  product  to  deal 
with  future  automated  resolutions. 

Pricing  starts  at  $150,000  for  a  typical  multi-server 
application  environment  consisting  of  10  to  12 
CPUs.B 
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color  prints,  plus  advanced  multi-function 


-gv.;.-  -  :  -•«'  I 

The  remarkable  Xerox  WorkCentre  Pro  2128  gives  you  an 
aff  ordable  way  to  add  brilliant  color  and  an  impressive  set  of 
valuable  features  to  any  office.  This  advanced  digital  system 


] 


can  print,  copy,  scan,  e-mail  or  fax  simultaneously,  even  when 
other  jobs  are  running.  It  also  scans  hard  copy  directly  to 
e-mail,  improving  productivity.  Walk-up  simplicity  means  easy 


xerox.com/office/24  1-800- ASK-XEROX  ext.  24 


©  2005  XEROX  CORPORATION.  All  rights  reserved.  XEROX?  WorkCentre®  and  Xerox  Color.  It  makes  business  sense  are  trademarks  of  XEROX  CORPORATION  in  the  United  States  and/or  other  countries. 


WorkCentre®  Pro  2128  delivers  rich  1200x1200  dpi 
performance.  Xerox  Color.  It  makes  business  sense. 


access  to  razor  sharp  28  ppm  black-and-white  and 
21  ppm  quality  color  documents.  And  it  consolidates  0Q 
all  these  functions  without  compromising  reliability. 


Xerox  WorkCentre  Pro  2128 


To  learn  more,  see  our  full  line  of  multi-function 
systems,  digital  copiers  and  award-winning  color 
printers.  It  makes  perfect  sense  for  any  business. 


Print  Copy  Scan  Fax  E-mail 


XEROX 


Technology  Document  Management  Consulting  Services 


14 

NetworkWorld 

1/31/05 

Hews 

www.nwfusion.com 

Storage  software  protects  data  24/7 


BY  DENI  CONNOR 


National  Renewable  Energy 
Laboratory  used  to  rely  on  end 
users  to  back  up  their  own  desk¬ 
top  and  laptop  computers.  There 
was  only  one  problem:  “It  never 
got  done,”  says  Todd  Wessels,  sys¬ 
tems  administrator  for  the 
Golden,  Colo.,  lab. 

After  an  electron  microscope 
running  on  a  Windows  95  system 
crashed  and  it  cost  the  company 
$16,000  to  re¬ 


cover  the  data, 

Wessels  sought 
a  better  way  to 
back  up  re¬ 
searchers’  systems. 

He  discovered  a  new  breed  of 
back-up  and  recovery  products, 
which  boast  what  vendors  call 
continuous  data  protection 
(CDP).As  the  name  implies, CDP 
products  save  data  to  disk  as 
changes  are  made,  not  at  the  end 
of  the  day,  as  older  back-up  prod¬ 
ucts  tend  to  do.  So  if  an  end  user 
loses  an  electron  microscope  or 
even  just  an  e-mail,  the  data  can 
be  recovered  shortly  thereafter, 
with  no  need  to  sift  through  a  full 
nightly  backups  worth  of  data. 

Early  adopters  say  CDP  prod¬ 
ucts  address  a  growing  need  for 
not  just  fast  backups,  but  quick 


recoveries.  Observers  say  the 
products  (which  come  in  the 
form  of  host  server  software  and 
appliances)  eventually  could 
replace  older  back-up  systems, 
but  more  likely  will  complement 
them,  such  as  by  taking  over  disk 
backup  but  leaving  tape  backup 
to  the  older  systems. 

Mainly  start-ups  are  addressing 
this  market  so  far  (see  graphic), 
though  Microsoft  has  promised 
to  enter  this  arena  later  this  year 
with  its  Data 

Continuous  Data  Protection  Lllr^e  b^ 
EARLY  ADOPTERS  gest  names  in 

storage  man¬ 
agement  are  expected  to  enter 
the  market  via  acquisition  or 
internal  development.  There  has 
been  plenty  of  action  in  the  mar¬ 
ket  of  late,  with  Storactive  an¬ 
nouncing  a  new  version  of  its 
LiveBackup  software  for  desk¬ 
tops  and  laptops,  the  Storage  Net¬ 
working  Industry  Association 
forming  a  subcommittee  to  ex¬ 
plore  CDP  issues  and  start-up 
TimeSpring  raising  $11.3  million 
in  venture  capital  to  fund  its  soft¬ 
ware  for  “turning  back  time.” 

Wessels  has  installed  Storact¬ 
ive ’s  LiveBackup  to  protect  data 
on  600  researchers’  desktops 
and  laptops.  While  the  software 


Protective  species 

A  sampling  of  vendors  and  products  in  the  continuous  data  protection  market. 


Vendor/product 


Alacritus/ChronoSpan 

LiveVault/Online  Backup  and 
Recovery 

Mendocino  Software/Realtime 

Revivio  Continuous  Protection 
System  1100 

Storactlve/LiveBackup  for 
Windows  Servers 

Topio/Data  Protection  Suite 

XOsoft/Enterprise  Data 
Rewinder 


automatically  backs  up  data, 
end  users  can  recover  files  in 
hours  or  minutes  instead  of 
days,  he  says. 

“Since  July,  when  we  installed 
LiveBackup,  IT  has  done  80  sys¬ 
tem  recoveries,"  Wessels  says. 
“Users  have  done  thousands  of 
file  recoveries.” 

Turning  back  the  hands  of  time 

Circumventing  spyware  turned 
out  to  be  an  unexpected  use. 

“We  can  roll  back  10  or  15  min- 


Istart-iip  shields  against  Exchange  failures 


Newcomer  Mimosa  Systems  is  readying 
continuous  data  protection  software  with 
a  twist  —  it  specifically  supports 
Microsoft  Exchange  systems. 

The  company  says  its  NearPoint  software 
enables  speedy  recovery  of  Exchange  data 
and  archives  messages  for  compliance  pur¬ 
poses. 

“Having  separate  e-mail  archiving  and  CDP 
packages  builds  silos  of  storage  and  causes 
management  complexity,"  saysT.M.  Ravi,  CEO 
and  president  of  Mimosa. 

Mimosa,  which  is  named  after  a  characteris¬ 
tic  of  the  sensitive  plant  called  thigmonasty 
(the  leaves  fold  up  in  a  self- protective  instinct 
to  being  touched),  is  developing  software  that 
responds  appropriately  to  the  type  of  failure  in 
Exchange  databases  and  protects  them. 
NearPoint  lets  administrators  create  rules 
regarding  the  backup  of  Exchange  databases 
and  perform  restores  of  entire  databases,  mail¬ 
boxes  or  individual  e-mails. 

Mimosa's  software  differs  from  other  CDP 
software  from  Revivio,  TimeSpring  and 
Mendocino  Software  because  it  is  built  specifi¬ 
cally  for  the  Windows  environments.  While 


NearPoint  initially  protects  and  archives  Ex¬ 
change  data,  future  versions  will  protect  SQL 
Server  and  SharePoint  environments,  the  com¬ 
pany  says.  NearPoint  is  most  similar  to 
XOsoft’s  Enterprise  Rewinder  software  for 
Microsoft  Exchange,  SQL  Server  and  Oracle. 

NearPoint  also  differs  from  these  software 
packages  because  it  lets  end  users  and  audi¬ 
tors  search  and  retrieve  e-mail  that  has  been 
backed  up  and  archived. 

“Application  integration  is  always  the  criti¬ 
cal  piece  to  making  CDP  worthwhile,  so  e- 
mail-focused  CDP  is  a  no-brainer,"  says  Brad 
O'Neill,  senior  analyst  with  Taneja  Group. 

The  start-up  launched  in  December  2003 
and  has  received  $6.5  million  in  funding  from 
Clearstone  Venture  Partners,  August  Capital 
and  DotEdu  Ventures.  The  company  was  start¬ 
ed  by  Ravi  and  Roy  D'Souza,  veterans  of 
Computer  Associates,  Cheyenne  Software, 
Brocade  Communications  and  Intel. 

The  Windows  server  software  is  expected  to 
be  available  before  the  end  of  March.  It  will  be 
priced  in  a  manner  similar  to  Microsoft  Ex¬ 
change’s  client  access  licenses,  which  cost  $67. 

—  Deni  Connor 


Type  of  product 


Appliance  or  switch 
Host  computer  software 

Host  computer  software 
Appliance 

Host  computer  software 

Host  computer  software 
Host  computer  software 


Data  recovery  stylo 


Each  write 
Rules-based 

Each  write 
By  the  second 


Each  write 


Rules-based 
By  the  second 


Price 


$50,000  tlEB 

$199  server  per 
month 

$30,000 

$50,000 


$50,000 


utes  to  a  point  before  the  spy- 
ware  was  introduced  and  get  rid 
of  it, "Wessels  says. 

Another  early  adopter  of  CDP 
is  Chuck  McQuade,  systems  spe¬ 
cialist  at  the  University  of  New 
Mexico  in  Albuquerque.  He  is 
testing  Revivio’s  CPS  1200,  an 
appliance  that  lets  IT  staff  con¬ 
tinuously  protect  data  and 
restore  it  from  any  point  in  time. 

McQuade  used  to  do  snapshot 
backups  of  Oracle  data  stored 
on  IBM  Enterprise  Storage  Serv¬ 
ers  and  midsize  IBM  DS4500s 
using  IBM’s  Flashcopy  software. 

“To  do  this,  we  had  to  basically 
shut  down  our  production  serv¬ 
er,  initiate  the  Flashcopy,  then  go 
to  a  back-up  proxy  server  and 
back  up  that  flashed  copy  from 


disk  to  disk  and  eventually  to 
tape,”  he  says.  The  operational 
logistics  of  this  approach  was 
complicated  and  time-consum¬ 
ing,  he  says. 

“We  had  no  choice  but  to  go  to 
CDP,”  McQuade  says.  “There’s  no 
doubt  that  this  technology  will 
save  our  IT  staff  a  lot  of  time.” 

Still,  McQuade  says  he  is  pro¬ 
ceeding  with  caution  given  the 
newness  of  the  technology. 

He  plans  to  put  CDP  into  pro¬ 
duction  by  year-end.  ■ 


Storage 
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Cisco  I0S  flaws  found 


■  BY  PHIL  HOCHMUTH 

Cisco  last  week  warned  of  several  vulnerabilities  in  its  IOS  software 
that  attackers  could  use  to  bring  down  routers  in  enterprise  and  ser¬ 
vice  provider  networks. 

The  three  separate  software  flaws  are  related  to  Border  Gateway 
Protocol  (BGP), Multi-protocol  Label  Switching  (MPLS)  and  IPv6.Two 
of  the  three  bugs  present  the  opportunity  for  an  outside  attacker  to 
send  a  specially  crafted  packet,  which  would  disrupt  the  router  and 
cause  it  to  reload.  Attackers  could  use  this  technique  repeatedly  to 
mount  a  denial-of-service  attack  on  the  router. 

Cisco  has  updated  software  available  to  fix  the  IOS  problems.  The 
company  says  it  has  no  reports  of  any  of  the  three  bugs  being  used  in 
an  attack. 

The  BGP  IPv6  and  MPLS  vulnerabilities  in  IOS  come  a  week  after  an 
IOS  flaw  was  reported  that  affects  Cisco  access  routers  to  support  IP 
telephony  and  VoIP  services. 

“IOS  has  had  a  number  of  these  problems  in  the  past,  and  Cisco  has 
quietly  fixed  them,”  says  Frank  Dzubeck,  president  of  consulting  firm 
Communications  Network  Architects.  “They  never  made  a  big  deal 
about  them,  the  way  Microsoft  does.  Now  the  question  becomes,  is 
IOS  the  next  Windows  in  terms  of  a  security  problem?”  ■ 
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Source:  BearingPoint,  2004 


Enterprise  Business  Scenario 


|  Windows  Server  2003  Full  Support  (24x7):  10%  of  servers  are  Enterprise  Edition,  90%  Standard  Edition 
|  Red  Hat  Full  Support  (24x7):  100%  of  servers  are  AS  Premium 
^  Red  Hat  Limited  Support:  10%  of  servers  are  AS  Premium  (24x7),  90%  ES  Standard  (12x5) 
j  Novell's  SUSE  Linux  (24x7):  10%  of  servers  are  Enterprise  Server,  90%  Standard  Server 


1  YEAR  3  YEARS  5  YEARS 


A  recent  study  of  licensing  and  support  costs  conducted  by  BearingPoint, 
a  leading  independent  consulting  firm,  found  that  these  acquisition  costs 
for  Windows  Server™2003  are  comparable  to  Red  Hat  Enterprise  Linux  or 
Novell's  SUSE  Linux  Enterprise  Server  "despite  the  common  perception  that 
Linux  is  free  or  very  inexpensive."  However,  if  you  require  full  24x7  phone 
support  on  all  servers,  licensing  and  support  for  Windows  Server  2003  can 
cost  up  to  73%  less  than  Red  Hat  Enterprise  Linux*  over  five  years. 

For  the  full  study,  visit  microsoft.com/getthefacts 


‘Red  Hat  Full  Support  (24x7)  estimates  based  on  case  where  100%  of  servers  are  Enterprise  Linux  AS  Premium.  Red  Hat  Limited  Support  estimates  are  based  on  case  where  10%  of  servers 
are  Enterprise  Linux  AS  Premium  (24x7  phone  support)  and  90%  are  Enterprise  Linux  ES  Standard  subscriptions  (9  a.m.-9  p.m.  EST  M-F  phone  support).  Windows  Server  estimates 
are  based  on  case  where  10%  of  servers  are  Windows  Server  2003  Enterprise  Edition  and  90%  are  Windows  Server  2003  Standard  Edition  (24x7  phone  support  on  all).  This  study  was 
commissioned  by  Microsoft.  ©  2005  Microsoft  Corporation.  All  rights  reserved.  Microsoft,  Windows,  the  Windows  logo,  Windows  Server,  and  Windows  Server  System  are  either  registered  trademarks 
or  trademarks  of  Microsoft  Corporation  in  the  United  States  and/or  other  countries.  The  names  of  actual  companies  and  products  mentioned  herein  may  be  the  trademarks  of  their  respective  owners. 
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Microsoft’s  path 


Company  making  a  move  on  anti-virus,  anti-spyware  markets. 


June 

Acquires  anti-virus  firm  GeCAD  Software;  announces 
intention  to  provide  anti-virus  products,  services. 


f 


January 

Releases  AntiSpyware  beta 
and  free  virus  cleanup  tool. 

1 


2003 


2004 
December  — 


J 


Purchases  anti-spyware  start¬ 
up  Giant  Company  Software. 


2005 

February  — ^ 

Bill  Gates  expected  to  unveil  anti-virus, 
anti-spyware  product  plan  at  RSA  security 
conference  Feb.  15. 


Microsoft 

continued  from  page  1 

“This  is  a  challenge  for  Micro¬ 
soft:  the  inherent  conflict  of  inter¬ 
est  in  that  Microsoft  has  had  to 
constantly  struggle  with  this  need 
to  fix  problems  in  their  own  prod¬ 
ucts,”  says  Neil  MacDonald,  a  Gart¬ 
ner  research  analyst.  For  Mi¬ 
crosoft  to  sell  anti-virus  and  anti¬ 
spyware  products  is  akin  to  “the 
water  company  which  has  smelly 
water,  selling  filters  to  take  the 
smell  out,”  he  says. 

Last  week  the  speculation  that 
Gates  will  make  security  news  at 
RSA  had  analysts  —  including  at 
least  one  financial  analyst,  Adam 
Holt  at  J.P  Morgan,  who  predicts 
Microsoft  will  have  an  anti-virus 
product  out  in  the  third  quarter 
—  issuing  alerts  about  the 
prospect. 

MacDonald  says  Microsoft  is  in 
a  hurry  to  get  into  the  anti-virus/ 
anti-spyware  business  if  only  to 
provide  added  protections  for  its 
Web  browser,  which  is  starting  to 
lose  market  share  to  the  open 
source  Firefox  browser.  Firefox  is 
said  to  have  better  security  pro¬ 
tections  than  Internet  Explorer. 

Anti-virus  and  anti-spyware  pro¬ 
tections  are  destined  to  be  com¬ 
bined,  experts  increasingly  agree, 
and  Microsoft  appears  to  have 
signaled  its  assent  recently  by  ac¬ 
quiring  Giant  Company  Software 
in  December  and  issuing  a  free 
beta  version  of  an  anti-spyware 
product  in  tandem  with  a  free 
virus  cleanup  tool  this  month. 

“It  should  be  a  single  product, 
and  the  anti-virus  vendors  have 
dropped  the  ball,”  MacDonald 
says,  though  he  adds  that  McAfee 


and  Computer  Associates  are 
among  the  few  that  seem  to 
understand  the  convergence.  “I 
blame  it  on  the  greed  and  inepti¬ 
tude  of  the  [anti-vims]  vendors,” 
he  adds. 

1DC  also  believes  that  vims  and 
spyware  protection  will  more 
often  be  merged  into  one  prod¬ 
uct,  further  blurring  the  line 
between  today’s  estimated  $3  bil¬ 
lion  anti-virus  market  and  the 
much-less-mature  $47  million 
anti-spyware  market.This  consoli¬ 
dation  will  occur  because  cus¬ 
tomers  increasingly  are  demand¬ 
ing  a  single  product  to  combat 
vimses,  spyware,  Trojans,  worms 
and  other  types  of  malicious 
code,  says  Brian  Burke,  a  senior 
research  analyst  at  IDC. 

Burke  says  Microsoft  can  be  ex¬ 
pected  to  have  an  integrated 
product  by  early  next  year. 

One  anti-spyware  software  ven¬ 
dor,  Webroot  Software,  rejects  the 
notion  that  stand-alone  anti-spy¬ 
ware  products  will  be  ignored  as 
combination  products  gain  trac¬ 
tion.  David  Moll,  Webroot  CEO, 
also  says  Microsoft  will  find  spy- 


ware  a  tough  sell  because  “cus¬ 
tomers  will  be  faced  with  an  in¬ 
teresting  decision  about  purchas¬ 
ing  a  security  product  to  protect 
software  from  the  same  compa¬ 
ny  Moll  adds  that  Microsoft  just 
signed  a  three-year  deal  with 
Webroot  to  use  its  technology  for 
MSN  subscribers. 

It’s  Microsoft’s  willingness  to  be 
the  first  responder  —  identifying 
new  threats  and  issuing  signature 
updates  within  hours  or  minutes, 
like  anti-vims  firms  do  today  — 
that  is  the  biggest  question,  Burke 
says.  Microsoft  is  only  accus¬ 
tomed  to  providing  monthly  sig¬ 
nature  updates,  but  “anti-vims  has 
evolved  from  a  product  to  a  ser¬ 
vice  and  the  effectiveness  of  the 
security  is  only  as  good  as  its  last 
update,”  he  says.The  value  of  anti- 
vims  is  increasingly  based  on  the 
vendors  to  quickly  provide  signa¬ 
ture  updates  for  the  latest  threats.” 

IDC  says  Microsoft  will  either 
use  Windows  Update  Service, 
which  currently  distributes  hot 
fixes  and  patches,  to  deliver  these 
updates  or  partner  with  an  anti- 
vims  vendor. 

Once  Microsoft  enters  the  anti- 
vims  update  business,  the  major 
effect  on  the  market  would  be  felt 
primarily  on  the  consumer  arena 
—  which  Symantec  dominates  — 
rather  than  the  corporate  side,  IDC 
says.  Anti-virus  vendor  Trend 
Micro,  which  is  resigned  to  the 
prospect  of  Microsoft  as  a  com¬ 
petitor,  shares  that  view. 

“There  will,  in  fact,  be  co-exis- 
tence,”  says  Lane  Bess,  president 
of  Trend  Micro’s  North  American 
operations.  Bess  says  Trend  Micro 
will  continue  to  increase  its  anti¬ 
virus  sales  and  intends  to  put 
more  focus  on  spyware. 

Microsoft  last  week  sent  a  rep¬ 
resentative  to  the  ICSA  Labs  anti¬ 
virus  Product  Developer’s  meet¬ 
ing  in  San  Diego,  where  the  new 
subject  of  establishing  testing  cri¬ 
teria  for  spyware  was  discussed. 
This  would  appear  to  signal  the 
company  is  gearing  up  to  join 
the  rest  of  the  traditional  anti¬ 
virus  suppliers,  says  David  Perry, 


Trend  Micro’s  global  director  of 
education. 

Bess  says  Microsoft  will  have  an 
easier  time  pitching  anti-virus 
products  to  consumers  than  busi¬ 
nesses. 

“In  the  enterprise  space,  Micro¬ 
soft  will  be  hard-pressed  with 
CIOs,”  he  says.  “I  have  that  discus¬ 
sion  with  CIOs  when  I  ask  them, 
Am  1  going  to  be  in  trouble  when 
Microsoft  comes  in  with  an  anti¬ 
virus  product?’ You  get  a  bit  of  a 
chuckle,  and  they  say  ‘I’m  not 
going  to  tmst  my  enterprise  secu¬ 
rity  to  Microsoft.’” 

However,  some  organizations 
indicate  they  are  keeping  an 
open  mind. 

“I’ve  asked  Microsoft ‘Why  aren’t 
you  in  the  business  of  protecting 
your  own  backyard?”’  says  Eben 
Berry  manager  of  IS  at  Network 
Health,  a  healthcare  provider  in 
Cambridge,  Mass.  He’s  taking  a 
wait-and-see  attitude,  but  hopes 
Microsoft  dives  in  because  spy- 
ware  has  become  one  of  the 
most  dismptive  problems  inside 
Network  Health. 

Berry  says  he  has  scouted  for 
spyware-protection  products.  The 
danger  of  spyware  has  convinced 
management  it  should  block 
employee  access  to  the  Web, 
which  it  was  reluctant  to  do  be¬ 
fore.  He  hopes  any  Microsoft  en¬ 
try  would  bring  down  costs  be¬ 
cause  buying  spyware  is  like  buy¬ 
ing  anti-virus  software  twice. 

Microsoft  has  long  played  an 
important  role  in  the  develop¬ 
ment  of  anti-virus  products  by 
issuing  desktop  and  server  APIs 
that  anti-virus  vendors  use  in  their 
own  products  to  better  scan 
Windows-based  systems. 

If  Microsoft  wasn’t  going  to  pub¬ 
lish  such  guidelines  anymore, that 
would  cause  difficulties  for  com¬ 
petitors,  says  Mark  Shavlik,  presi¬ 
dent  and  CEO  of  Shavlik  Technol¬ 
ogies,  which  makes  patch  man¬ 
agement  and  vulnerability-assess¬ 
ment  products.  “If  Microsoft  did 
do  that,  it  would  essentially  dam¬ 
age  the  [anti-virus]  companies  by 
hiding  the  APIs,”  he  says.  ■ 


EBBERS  ON  TRIAL:  Opening  salvos  set  thetone 

The  long-awaited  fraud 
trial  of  former 
WorldCom  CEO  Bernie 
Ebbers  opened  last  week 
with  defense  attorneys 
taking  dead  aim  at  the 
prosecution’s  key 
witness,  Scott  Sullivan, 

Ebbers’  confidante  and 
WorldCom's  CFO.  In 
opening  statements, 

Ebbers'  attorney  called 
Sullivan  "the  most 

impeachable  witness”  ever  to  take  the  stand.  He  also  portrayed 
Ebbers  as  a  consummate  manager,  not  a  financial  expert  like  Sullivan, 
who  pleaded  guilty  to  fraud  charges  in  March.The  mudslinging  is 
expected  to  intensify,  with  pre-trial  talk  speculating  that  defense 
attorneys  would  allege  "marital  infidelities"  by  Sullivan  in  an  attempt 
to  undermine  his  credibility.  Ebbers'  defense  is  expected  to  center 
on  his  contention  that  he  left  the  financial  details  to  Sullivan  and 
played  no  role  in  any  accounting  fraud.  If  convicted,  Ebbers  could 
spend  30  years  in  jail. 


Ebbers  leaves  Federal  Court  in  New  York  after  a  pre¬ 
trial  hearing.  (AP  Photo/Mary  Altaffer) 
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Vernier  sets  sights  beyond  WLANs 


■  BY  DENISE  DUBIE 

Vernier  Networks  this 
week  is  set  to  make 
available  a  line  of  ap¬ 
pliances  designed  to 
let  customers  lock 
down  vulnerable  net¬ 
work  segments,  devices 
and  end  users. 

The  company  says  its  EdgeWall  appliances  will  help 
customers  perform  endpoint  screening  of  client  devices 
such  as  desktops,  and  traffic  inspection  to  ensure  a  vul¬ 
nerable  or  infected  machine  doesn’t  take  down  an 
entire  network.  Vernier,  which  made  its  start  in  wireless 
LAN  security,  is  taking  its  technology  and  applying  it  to 
wired  networks. 

EdgeWall  appliances  sit  at  the  network  edge  behind 
switches  and  wireless  access  points,  and  integrate  existing 
RADIUS  servers.  The  appliances  report  data  back  to 
Vernier’s  Control  Server,  which  stores  policies  and  inte¬ 
grates  with  customers’  existing  authentication  servers.  One 
Control  Server  console  can  manage  up  to  100  EdgeWall 
appliances  distributed  in  network  segments.  Each  lG-bit 
appliance  can  handle  up  to  1 ,000  end  users  and  requires 
no  agents  be  installed  on  end-user  clients.  To  take  action 


on  end-user  devices, 
such  as  applying 
patches,  Vernier 
depends  on  part¬ 
nerships  such  as 
that  with  PatchLink, 
which  could  have 
agents  installed  on 
client  machines. 

Much  like  products  from  firewall  vendors  Check  Point 
and  Sygate,  Vernier’s  EdgeWall  will  query  devices 
attempting  to  access  the  network  to  ensure  they  have 
the  proper  policies, configuration, software  and  patches 
applied  before  logging  on.  If  the  device  doesn’t  comply 
or  meet  security  requirements.it  will  be  denied  access 
until  a  patch  can  be  applied,  for  example. Vernier  part¬ 
ners  with  PatchLink  to  automate  the  process  of  apply¬ 
ing  patches.The  idea  is  to  prevent  infection  proactively 
rather  than  respond  to  threats  after  they’ve  hit. 

“Vernier  is  moving  sideways  and  taking  advantage  of 
what  they  already  did  in  the  wireless  world,  which  is 
control  access  to  the  network,” says  John  Pescatore.vice 
president  and  fellow  at  Gartner. 

Pricing  for  the  line  of  appliances  —  which  includes 
the  EdgeWall  7030,  7060,  7100  and  Express  —  starts  at 
$9,000.  ■ 


Vernier's  EdgeWall  7000  appliances  inspect  traffic  for  worms  and  viruses,  and 
screen  client  devices  and  users  before  they  are  allowed  network  access. 


Report:  Out  with  old, 
in  with  new  switches 

■  BY  PHIL  HOCHMUTH 

This  could  be  the  year  of  widespread  Ethernet  LAN 
switch  upgrades  in  business  networks, as  one  research  firm 
expects  Ethernet  sales  will  be  the  highest  since  2000. 

Dell’Oro  Group  estimates  that  total  revenue  in  2005  from 
Ethernet  gear  will  reach  $14.6  billion,  a  7%  increase  over 
last  year.  This  also  will  be  the  biggest  year  for  Ethernet 
since  the  height  of  the  technology  bubble  in  2000,  when 
the  market  reached  $14.1  billion. The  market  then  shrank 
for  three  consecutive  years. 

Dell’Oro  says  a  new  cycle  of  network  upgrades, replacing 
gear  that  was  put  into  corporate  LANs  more  than  five  years 
ago, will  drive  the  market  growth.  But  if  the  last  big  Ethernet 
push  was  based  on  the  evolution  of  faster  Ethernet  gear 
(for  example,  from  Fast  Ethernet  to  Gigabit  Ethernet), 
Dell’Oro  research  director  Seamus  Crehan  says  the  com¬ 
ing  Ethernet  boom  will  be  less  by  new  speeds  and  feeds. 

“Customers  are  also  looking  for  feature  or  intelligence 
upgrades  to  handle  new  requirements  at  the  LAN  edge, 
such  as  IP  telephony  security”  and  wireless/wired  LAN 
integration,  Crehan  says.  Switches  that  can  interact  with 
anti-virus  and  intrusion-detection  systems,  and  gear  that 
prioritizes  VoIP  traffic  or  supports  both  copper-  and 
WLAN-based  Ethernet  links  will  be  in  demand,  he  adds.H 
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■  VOIP  ■  WIRELESS  LANS 


■  New  software  features  from  XML 
network  hardware  maker  Data- 
Power  let  customers  that  use  its 
XS40  XML  Security  Gateway  ere 

ate  virtual  XML  gateways  on  a  single 
device  and  make  it  easier  to  set  up 
Web  service  security  policies,  the 
company  says.  DataPower  released 
firmware  Version  3.1  for  the  XS40 
that  will  let  customers  create  many 
virtual  XS40s  to  protect  Web  ser¬ 
vices  deployments  on  a  corporate 
intranet  or  extranet.  DataPower's 
products  are  designed  to  process 
network-traffic  information  rendered 
using  XML. The  XS40  gateway  appli¬ 
ance  is  designed  to  filter  and  validate 
XML  traffic,  spotting  potential 
attacks  hidden  in  the  traffic, 
encrypting  and  decrypting  XML  mes¬ 
sages  or  data  elements  and  validat¬ 
ing  XML  documents.  The  virtualiza¬ 
tion  features  make  it  possible  to  use 
one  device  to  protect  one  or  more 
production  Web  services,  and  to  con¬ 
tinue  testing  in  trial  deployments. 

The  DataPower  XS40  appliance  sells 
for  $65,000.  Version  3.1  for  the  XS40 
is  available  at  no  additional  cost  for 
current  customers. 

■  Kavado,  which  for  several  years 
has  offered  its  Web  application  secu¬ 
rity  firewall  InterDo  that  blocks  at¬ 
tacks  through  intrusion  prevention,  is 
coming  out  with  a  product  that  uses 
similar  technology  to  passively  moni¬ 
tor  corporate  networks  for  threats. 
The  Defiance  Threat  Manage¬ 
ment  System  includes  the  server- 
based  Monitor  that  can  detect  a 
threat  and  instruct  a  second  server, 
known  as  the  Defiance  Gateway,  to 
block  attacks.  The  Defiance  Security 
Console  provides  centralized  admin¬ 
istration,  management  and  reporting, 
and  the  Defiance  Management 
Server  acts  as  a  repository  of  Web 
application  security  data  and  logs. 
The  Monitor  runs  on  a  Linux,  Win¬ 
dows  or  Sun  server.  Defiance  Mon¬ 
itor,  which  costs  $11,500,  is  available 
this  week.  Defiance  TMS  is  currently 
in  beta  and  is  expected  to  ship  by 
the  end  of  the  first  quarter.  Pricing 
will  start  at  about  $53,000. 


Taming  the  ever-evolving  phish 


risk 


A  different  kettle  of  phish 


New  attacks  target  workplaces  by  spoofing  administrator  e-mail 
addresses.  Corporate  network 

0 


O  Phisher  gets  e-mail  address  ©  Spoofed  e-mail  asks  ©  When  employees  log  on,  a  key-  ©  Phisher  now 
of  a  network  or  security  employees  to  log  on  logger  application  attached  to  has  access  to 

administrator  and  spoofs  an  to  a  corporate  the  spoofed  e-mail  is  launched  corporate 

e-mail  to  employees.  application.  and  records  passwords.  information. 


■  BY  CARA  GARRETSON 

At  an  industry  conference  last  year,  the 
head  of  security  for  a  state  port  authority 
told  of  how  a  phisher  —  possibly  a  current 
or  former  employee,  or  someone  in  ca¬ 
hoots  with  one  —  bluffed  his  way  onto  the 
corporate  network  by  first  spoofing  an  in¬ 
ternal  e-mail  address.  The  ploy  apparently 
designed  to  elicit  application  passwords, 
got  responses  from  about  50  workers  be¬ 
fore  one  called  the  IT  department  to  raise  a 
red  flag,  according  to  a  conference 
attendee. 

Once  a  phisher  has  successfully  spoofed 
a  corporate  email  address, the  damage  that 
can  ensue  is  substantial,  experts  say.  In  the 
port  authority  case,  the  phisher  could  have 
found  a  number  of  ways  into  the  corporate 
network  once  he  convinced  employees 
that  his  email  actually  came  from  a  co¬ 
worker.  For  example,  the  phisher  could 
have  attached  a  key-logging  program  to  the 
e-mail  that  recorded  an  unsuspecting 
employee’s  password  while  he  was  ac¬ 
cessing  an  application,  thus  granting  the 
phisher  access  as  well.  Officials  with  the 
port  authority  won’t  comment  further  on 
the  incident. 

Security  vendors  and  anti-phishing  orga¬ 


nizations  report  that  such  targeted  phishing 
attacks  on  enterprise  networks  —  some¬ 
times  called  spear  phishing  —  are  on  the 
rise.  What’s  at  stake  is  not  only  the  theft  of 


personal  financial  information,  but  also 
loss  of  intellectual  property,  trade  secrets 
and  other  highly  sensitive  information. 

See  Phishing,  page  20 


Spam  busters  go  on  the  offensive 

Mood  at  MIT  Spam  Conference  is  upbeat  in  wake  of  recent  legal  victory. 


■  BY  NEAL  WEINBERG 

CAMBRIDGE,  MASS. — The  war  on  spam 
is  far  from  over,  but  there  was  a  growing 
sense  among  the  anti-spam  crusaders 
gathered  last  week  at  the  Massachusetts 
Institute  of  Technology  that  advances  on 
the  legal  and  technology  fronts  have 
turned  the  tide  against  the  Viagra  peddlers 
and  Nigerian  princesses. 

Nobody  was  claiming  that  spam  will 
ever  be  completely  eliminated  or  even 
that  the  amount  of  spam  is  decreasing.  In 
fact,  anti-spam  newsletter  writer  John 
Graham-Cumming  reported  that  he  con¬ 
ducted  an  online  survey  in  which  spam 
accounted  for  77%  of  e-mail  the  nearly 
5,000  respondents  received. 

But  the  crowd  of  more  than  100  mem¬ 
bers  of  the  spam-fighting  fraternity 
were  buoyed  by  several  of  the  day’s 
presentations: 

•  On  the  legal  front,  Jon  Praed,  founding 


partner  of  the  Internet  Law  Group,  drew 
cheers  when  he  reported  that  convicted 
North  Carolina  spammer  Jeremy  Jaynes 
was  sentenced  in  November  to  nine  years 
in  a  Virginia  jail.  Jaynes,  No.  8  on  Spam- 
haus’  Register  of  Known  Spam  Opera¬ 
tions,  or  ROKSO,  list,  was  charged  with 
sending  millions  of  pieces  of  spam  via  a 
program  called  RoboMail  to  AOL  cus¬ 
tomers  in  2003.  AOL  is  based  in  Virginia. 

Jaynes  is  the  first  person  ever  convicted 
in  the  U.S.  on  felony  spam  charges,  which 
were  based  on  a  tough  Virginia  law  in 
which  penalties  increase  based  on  the 
number  of  fraudulent  messages  sent.  Vir¬ 
ginia  Attorney  General  Jerry  Kilgore  is  not 
letting  up  either  —  last  May  he  arrested  a 
woman  in  Fort  Worth,  Texas,  and  brought 
her  to  Virginia  to  face  spam  charges.  That 
trial  hasn’t  started  yet. 

“I  can  guarantee  that  spammers  today 
are  scared  to  death  that  they’re  next,” 
Praed  said.  He  added  that  tough  laws  are 


only  part  of  the  equation. “The  solution  is 
a  marriage  of  technology  and  law” 

•  On  the  technology  side,  amid  presen¬ 
tations  on  Bayesian  noise  reduction,  lexi- 
graphical  distancing  and  classifier  aggre¬ 
gation,  there  was  a  general  sense  that 
spam  filters  have  gotten  about  as  good  as 
they’re  going  to  get,  which  is  pretty  darn 
good. 

“In  general,  we’re  doing  a  good  job  keep¬ 
ing  spam  out  of  people’s  in-box,”  said 
Andrew  Klein,  product  manager  for  spam 
filter  company  MailFrontier.  With  success 
rates  currently  in  the  97%  to  98%  range, 
Klein  said,  “I  don’t  know  if  we  can  get 
much  better.”  He  said  that  no  product  will 
ever  eradicate  all  spam,  but  today’s  prod¬ 
ucts  can  reduce  spam  to  “an  acceptable 
level.” 

Graham-Cumming,  who  is  also  chief  sci¬ 
entist  at  Electric  Cloud,  a  software  devel¬ 
opment  company  in  Mountain  View,  Calif., 

See  Spam,  page  21 
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“Thieves  have  discovered  a  gold  mine, 
and  they’re  not  going  to  let  up  until  the 
technology  gets  better]’  says  Avivah  Litan,a 
vice  president  and  research  director  with 
Gartner. 

These  targeted  phishing  attacks  on  com¬ 
panies  take  much  more  work  on  the  part  of 
the  phisher  than  simply  sending  out  thou¬ 
sands  of  e-mails  that  spoof  eBay  in  hopes 
of  catching  a  handful  of  consumer  victims. 
But  experts  say  that  doesn’t  mean  compa¬ 
nies  should  assume  it  won’t  happen  to 
them  because  phishers  can  do  much  dam¬ 
age  with  very  little  purloined  information. 

“If  you’re  sending  out  Citibank  emails  to 
loads  of  people  trying  to  get  their  [bank¬ 
ing]  password  . . .  then  there’s  a  very  high 
likelihood  that  password  is  the  same  one 
used  for  network  access,”  warns  Dave 
Jevans,  chairman  of  the  Anti-Phishing 
Working  Group,  one  of  the  industry  organi¬ 
zations  attempting  to  fight  the  problem 
(see  graphic).  That  means  even  phishers 
who  haven’t  figured  out  how  to  spoof  inter¬ 
nal  e-mails  still  can  gain  network  access  by 
phishing  consumers  that  aren’t  diligent 
about  varying  their  passwords. 

There’s  also  been  an  increase  in  phishing 
attacks  that  target  a  certain  company  but 
don’t  originate  within  the  organization, 
says  Andy  Klein,  anti-fraud  product  manag¬ 
er  with  e-mail  security  vendor  MailFrontier. 
The  company’s  customers  are  reporting  a 
rise  in  e-mails  that  purport  to  come  from  a 
service  provider  or  supplier  to  their  com¬ 
pany  —  American  Express’  corporate  cred¬ 
it  card  division,  for  example. 


Phish  fighters 

A  number  of  industry  groups  have  been  established  to  help  companies 
and  consumers  prevent  phishing.  Among  them: 


Group 

Established 

Key  members 

Goal 

Anti-Phishing  Working 
Group 

2004 

MasterCard,  Visa 
Symantec,  Mircrosoft, 
RSA  Security 

Information  sharing, 
technical  solutions,  work 
with  law  enforcement. 

Digital  Phishnet 

2004 

Microsoft,  AOL, 
VeriSign,  FBI,  FTC, 
Secret  Service 

Improve  information 
flow  between  industry 
and  law  enforcement  to 
catch  phishers. 

Trusted  Electronic 

Communications  Forum 

2004 

IBM,  Best  Buy, 

Charles  Schwab, 
E*Trade 

Promote  technology 
standards,  educate 
consumers  and 
lawmakers. 

In  these  scenarios,  phishers  often  send 
messages  to  a  company’s  e-mail  group 
names,  such  as  marketing@companycom, 
and  ask  employees  to  update  their 
account  information.  These  e-mails  hold 
more  credibility  than  the  massive  con¬ 
sumer-oriented  attacks  because  they 
appear  to  come  from  a  trusted  business 
partner,  Klein  says. 

Companies  are  just  beginning  to  realize 
the  risks  phishing  can  bring  to  bear  on 
their  organizations,  and  are  looking  to 
security  vendors  for  help.  At  The  Invest¬ 
ment  Center  in  Bridgewater,  N.J.,  IT  man¬ 
ager  Rob  Fernandez  says  phishing  makes 
him  nervous.  But  he  also  views  it  as  part 
of  doing  business  as  a  financial  services 
company  because  that  makes  the  organi¬ 
zation  more  of  a  target  than  other  types  of 
business. 

“There  was  a  time  when  viruses  were  the 


main  problem.  They  still  are  [a  problem] , 
but  they  seem  more  under  control.  Now  it’s 
spam  and  phishing,”  says  Fernandez,  who 
has  seen  fraudulent  e-mails  enter  his  orga¬ 
nization  attempting  to  extract  information 
about  corporate  credit  cards.“We’re  a  finan¬ 
cial  organization,  so  our  requirements  [to 
protect  sensitive  data]  are  a  lot  stricter .  .  . 
that  gives  us  more  of  a  reason  to  want  to 
get  serious.” 

The  Investment  Center  uses  SurfControl’s 
Web  Filter  and  E-mail  Filter  to  protect 
against  spam  and  phishing,  and  from  direc¬ 
tory  harvest  attacks  in  which  phishers 
attempt  to  pull  addresses  from  e-mail 
servers. 

A  number  of  companies,  many  that  sell 
anti-spam  products,  are  tuning  their  offer¬ 
ings  to  include  phishing  protection.  Yet 
some  analysts  question  the  effectiveness 
of  these  tools  because  they  mostly  block 


incoming  messages  that  contain  URLs  of 
known  phishing  sites,  or  prevent  Web 
browsers  from  visiting  those  sites,  which 
means  they  are  ineffective  against  new 
attacks  that  point  people  to  URLs  not 
already  on  blacklists.  Considering  that 
most  phishing  sites  only  stay  up  for  a 
number  of  hours,  blacklisting  known  sites 
won’t  provide  much  protection,  Gartner’s 
Litan  says. 

One  exception  is  the  latest  release  of 
MailFrontier’s  Gateway  Server,  Enterprise 
Edition,  which  includes  anti-fraud  filters 
based  on  the  Bayesian  filtering  technol¬ 
ogy  found  in  the  company’s  anti-spam 
product  to  stop  phishing  e-mails  before 
they  enter  an  organization.  Scanning  e- 
mail  with  filters  tuned  to  find  fraudulent 
mail  is  very  different  from  searching  for 
spam,  MailFrontier’s  Klein  says.  “If  I  send 
you  a  message  with  the  word  ‘privacy’  and 
you  analyze  it  with  a  spam  filter,  the  score 
is  neutral.  If  I  do  that  same  thing  with  a 
fraud  filter  it  scores  very  negatively? 
because  many  phishing  e-mails  try  to  lure 
recipients  into  updating  their  account 
information  to  ensure  privacy,  he  says. 

Yet  the  problem  with  anti-phishing  fil¬ 
ters  is  not  unlike  the  issue  with  anti-spam 
filters;  until  technology  can  determine 
the  true  source  of  an  e-mail,  the  threats 
continue. 

“Phishing  is  causing  . . .  greater  problems 
than  any  bank  robbery  we’ve  ever  seen  in 
history’  says  Matthew  Prince,  CEO  of  anti¬ 
spam  consulting  firm  Unspam.  “That’s  the 
biggest  problem  for  2005  that  we  have  to 
solve:  How  do  we  tell  legitimate  messages 
from  illegitimate  ones, and  if  they’re  illegiti¬ 
mate  how  do  we  track  them  down?”  ■ 
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Of  the  many  things  we  can  be  thank¬ 
ful  for  as  we  launch  into  2005,  one  is 
the  knowledge  that  we  won’t  be 
using  our  entire  IT  budget  just  to  feed  the 
network  beast.  Where  a  first-generation 
Gigabit  Ethernet  card  could  cost  several 
thousand  dollars,  CDW’s  home  page  (as  1 
write)  displays  a  brand-name  network 
interface  card  for  $34.95.  But,  like  most 
things,  there  are  some  trade-offs.  We  must 
ask  ourselves  —  does  quality  sometimes 
fall  along  with  price? 

As  I  look  back  on  the  last  two  years,  it 
just  seems  to  me  that  we  encounter  more 
“bad  cards,”  “bad  ports”  and  “bad  mod¬ 
ules”  than,  say,  five  years  ago.  Given  the 
wholly  unscientific  nature  of  my  observa¬ 
tions,  I  decided  to  conduct  some  brief 
research  on  how  network  vendors  were 
dealing  with  mean  time  between  failures 
(MTBF)  of  their  devices. 

And  as  “cheap”  as  network  gear  is,  the 
real  expense  isn’t  in  the  capital  cost  of  a 
new  NIC  or  a  switch,  it  is  in  the  lost  busi¬ 
ness  and  user  productivity  that  occurs 
when  the  device  fails.  Add  to  that  the  time 
to  isolate  the  failure  and  source  a  new 
piece  of  gear  if,  for  example,  you  don’t 
happen  to  have  a  spare  switch  on  hand. 

I  think  most  people  running  small-  to 
midsize-business  (SMB)  and  enterprise 


Paying  the  price  for  ‘dirt  cheap'  networking 


networks  would  echo  NASAs  Gene  Kranz 
(former  director  of  mission  operations  at 
the  Johnson  Space  Center  in  Texas)  and 
say  “Failure  is  not  an  option.”  But  getting 
there  may  not  be  easy 

1  recall  years  ago,  when  IBM  offered 
some  early  network  products  on  its  PC 
platform,  hearing  the  representative  bold¬ 
ly  state  that  the  MTBF  was  10  years.This  on 
a  box  that  had  only  been  shipping  for  a 
year  or  so.  But  he  was  serious  — “Yup,  10 
years  and  we  are  in  the  second  year  of  the 
test.”  At  that  time,  at  least,  a  part  of  the 
process  was  actually  to  run  a  set  of 
devices  in  the  vendor  lab  to  parallel  what 
customers  were  doing. 

Most  often,  though,  industry-accepted 
formulas  organizations  such  as  BellCore/ 
Telcordia  produce  are  used  to  predict  the 
likelihood  that  any  part  in  the  assembly 


will  fail. 

It  is  anyone’s  guess  how  vendors  treat 
MTBF  internally  but  from  the  outside  look¬ 
ing  in  —  by  way  of  Web  sites  and  spec 
sheets  —  it  is  a  mixed  bag  indeed. 

Only  the  so-called  “industrial  Ethernet” 
vendors  and  providers  of  service-provider- 
class  gear  seem  to  push  MTBFWith  most 
enterprise  and  SMB  products,  that  infor¬ 
mation  is  either  buried  or  often  simply 
invisible. 

But  SMB  and  enterprise  buyers  can  ill 
afford  to  have  infrastructure  elements  sim¬ 
ply  stop  working. 

A  random  check  of  Cisco  showed  that 
its  Catalyst  2970  has  an  MTBF  calculated 
to  be  163,000  hours  —  more  than  18 
years.  A  3Com  3800  is  listed  at  184,000 
hours  —  or  21  years.  (Cisco’s  GigaStack 
GBIC  is  expected  to  fail  once  every  500 


years!)  Extreme’s  Summit  switches  are 
rated  at  greater  than  50,000  hours.  (This 
list  is  obviously  not  comprehensive.) 

Yet,  for  some  other  brand-name  vendors, 
there  was  no  MTBF  information  listed  at 
all.  It  would  be  unfair  to  suggest  any  sinis¬ 
ter  motives  for  such  lack  of  information, 
but  it  does  invite  questions. 

IT  architects  have  a  right  to  this  kind  of 
information  and  would  be  well  advised  to 
start  requesting  it  —  which  used  to  be  pro¬ 
vided  as  a  matter  of  course  —  as  a  part  of 
any  bid.  After  all,  there  is  nothing  like 
unanticipated  downtime  to  wreck  your 
ROI  calculations. 

Tolly  is  president  of  The  Tolly  Group,  a 
strategic  consulting  and  independent  test¬ 
ing  company  in  Boca  Raton,  Fla.  He  can  be 
reached  at  ktolly@tolly.com. 
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added  that  Bayesian  filtering,  the  tech¬ 
nique  used  in  most  anti-spam  products, 
effectively  solves  the  spam  problem  for 
most  people.  “The  reality  is  that  these 
things  work  extremely  well,”  he  said. 

•  Matthew  Prince,  CEO  of  Unspam,  said 
he  has  opened  another  line  of  attack 
against  spammers  with  Project  Honeypot. 
Under  the  federal  CAN-SPAM  law,  harvest¬ 
ing  e-mail  addresses  for  use  by  spammers 
is  illegal,  so  Prince  is  soliciting  volunteers 
who  will  agree  to  plant  fake  e-mail 
addresses  on  their  networks  all  over  the 


world.  The  idea  is  to  track  those  e-mail 
addresses  to  try  to  catch  the  harvesters. 

While  the  presenters  were  upbeat  about 
the  legal  and  technical  approaches  to 
fighting  spam,  they  conceded  that  human 
behavior  is  a  tougher  nut  to  crack.  Brian 
McWilliams,  whose  book  Spam  Kings  pro¬ 
files  some  of  the  nation’s  most  notorious 
spammers, argued  that  blocking  spam  and 
dumping  it  into  a  separate  folder  won’t 
stop  some  people  from  digging  through 
their  spam  folder  and  buying  stuff  anyway. 

Graham-Cumming  said  that  1%  of  peo¬ 
ple  in  his  survey  and  2%  of  people  over 
the  age  of  55,  said  they  bought  from 
known  spammers.  And  when  you’re  send¬ 


ing  out  millions  of  e-mails,  that’s  enough  to 
make  spamming  profitable. 

This  was  the  third  annual  Spam  Confer¬ 
ence,  and  maybe  the  last.The  auditorium 
in  Building  29  on  the  MIT  campus  was 
packed  the  last  two  years,  but  there  were 
plenty  of  empty  seats  this  time  around. 

“There’s  not  so  much  of  a  sense  of 
urgency  this  year,”  said  anti-spam 
champion  Paul  Graham,  credited  with 
writing  a  paper  in  2002  that  led  to  the 
Bayesian  filters. 

“The  technology  problem  is  pretty  close 
to  being  solved,”  he  said.  And  the  recent 
legal  action  is  having  “a  chilling  effect”  on 
spammers.  ■ 
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When  business  losses  are  measured  in 
seconds ,  preemption  beats  “reaction”  every  time. 

The  only  effective  security  is  preemption.  This  preemptive  power  is  only  available 
with  the  Proventia™  ESP  Security  Platform  from  Internet  Security  Systems.  When  software  security 
flaws  are  discovered,  Internet  Security  Systems’  world-renowned  research  team  updates 
Proventia  to  immediately  shield  against  any  attacks  targeting  weak  spots.  Regardless 
of  the  size  of  your  business,  this  new  standard  in  Internet  security  can  help  keep 
you  off  the  path  to  disaster  and  reduce  your  total  cost  of  ownership  -  In  fact,  when 
we  manage  Proventia  for  you,  we'll  even  guarantee  protection.  Need  proof? 
Get  your  free  whitepaper,  Preemptive  Protection:  Setting  a  New  Standard  in  Security, 
at  www.iss.net/proof/wp  or  call  800-776-2362. 
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It's  hard  to  get  the  boss  excited  about  new  servers. 
So  well  talk  about  saving  money  instead. 


Economical  HP  BladeSystem  solutions  feature  the  high-performance  Intel®  Xeon™  Processor.  And  they  let  you  do  more  with  less.  By 
sharing  and  pooling  servers,  storage  and  network  resources,  you  can  virtualize  and  automate  more  processes.  And  HP  BladeSystem 
solutions  not  only  offer  lower  total  acquisition  costs,  they  also  allow  the  same  number  of  people  to  manage  more  IT— offering  you  a 
better  return.  Normally,  upgrading  to  more  sophisticated  technology  comes  with  a  hefty  price  tag.  Instead,  you'll  get  more  expertise 
before  you  buy,  more  technology  when  you  buy  and  more  support  after.  None  of  which  will  cost  more. 


HP  ProLiant  BL30p  Blade  Server 


THE  SOLUTION 

THE  BENEFITS2 

•  2  Intel®  Xeon™  Processors  DP  up  to  3.20GHz/2MB’ 

•  High  density:  Up  to  96  servers  per  rack 

•  Flexible/Open:  Integrates  with  existing  infrastructure 

•  HP  Systems  Insight  Manager™:  Web-based 
networked  managment  through  a  single  console 

•  Rapid  Deployment  Pack:  For  ease  of  deployment 
and  ongoing  provisioning  and  reprovisioning 

•  23%  savings  on  acquisition  cost 

•  Up  to  19%  less  power  consumption 

•  Up  to  93%  fewer  cables 

•  43%  less  space  needed  for  same  processing  power 

•  Hot-swappable  server  design 

•  Single  interface  for  local  and  remote  management 
of  servers,  storage,  software  and  networking 

SAVE  $500  INSTANTLY 

with  the  purchase  of  any  HP  BladeSystem  enclosure? 


Enhance  your  system. 


HP  StorageWorks 
MSA1500cs 

-  Up  to  24TB  o(  capacity  (96  250GB  SATA  drives) 

-  Up  to  16TB  of  capacity  (56  300GB  SCSI  drives) 

-  Ability  to  mix  SCSI  and  Serial  ATA 
enclosures  for  greater  flexibility 

-  2GB/1 GB  Fibre  connections  to  host 

GET  UP  TO  2TB 
OF  STORAGE  FREE4 
(Save  up  to  $3,192) 


invent 


Contact  HP  today  for  a  free  IDC  white  paper:  Adapting 
to  Change:  Blade  Systems  Move  into  the  Mainstream 


CLICK 


.  ’■■'i  V  ■■ ' 

www.hp.com/go/Bladesmag22 


— 


CALL 


Wm 


— 


1-866-356-6088 


VISIT 


mm 


your  local  reseller 


1  Intel's  numbering  is  not  a  measurement  of  higher  performance.  2.  Based  on  internal  HP  testing;  compared  to  similarly  configured  HP1U,  2P  server.  For  configurator,  please  visit:  http://h30099.www3.hp.com/configurator/catalog-issipc.asp.  3.  Offer  valid  through  4/30/05. 4.  Receive  up  to  2TB  of  storage  free  with  purchase 
of  select  HP  StorageWorks  MSA1 500  devices.  Offer  ends  on  3/31/05.  See  Web  site  for  full  details.  Intel,  Intel  logo,  Intel  Inside,  Intel  Inside  Logo,  Intel  Centrino,  Intel  Centrino  Logo,  Celeron,  Intel  Xeon,  Intel  SpeedStep,  Itanium  and  Pentium  are  trademarks  or  registered  trademarks  of  Intel  Corporation  or  its  subsidiaries  In 
the  United  States  and  other  countries.  ©2004  Hewlett-Packard  Development  Company,  L.P. 
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NetWare-Linux  combo  wins 

Novell  Open  Enterprise  Server  expected  to  ship  next  month. 


approval 


Learning  to  share 


The  Virtual  Office  component  of  Novell’s  Open  Enterprise  Server  lets 
users  access  and  share 
documents  with  others . . . 


These  buttons  give  users  access  to  printers, 
a  directory  of  other  users  and  e-mail. 
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This  panel  shows  which 
volumes  a  user  can  access. 
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From  the  browser  interface,  users  can  create 
teams  of  workers  for  collaboration  purposes. 
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■  BY  DENI  CONNOR 

IT  professionals  are  eagerly  awaiting  the 
arrival  of  Novell’s  next-generation  operat¬ 
ing  system,  which  combines  its  legacy 
NetWare  with  Linux. 

The  company,  which  acquired  Linux 


■  PalmOne  CEO  Todd  Bradley  will 

resign  at  the  end  of  the  first  quarter 
but  remain  with  the  company  until 
May,  the  maker  of  handheld  devices 
announced  last  week.  Bradley  was 
named  CEO  in  October  2003  when 
palmOne  spun  off  PalmSource, 
which  develops  the  Palm  OS,  and 
acquired  Handspring.  Ed  Colligan, 
currently  palmOne’s  president  and 
former  president  and  COO  at 
Handspring,  will  become  the  interim 
CEO  while  palmOne’s  board  of  direc¬ 
tors  searches  for  a  replacement. 
PalmOne  practically  invented  the 
PDA,  but  has  steadily  lost  market 
share  to  companies  such  as  HP  in 
recent  quarters  as  the  entire  PDA 
market  declines.  However,  the  com¬ 
pany  has  a  hit  with  theTreo  smart 
phone  products,  originally  developed 
by  Handspring. 

■  Transmeta  will  reorganize  its 
operations  at  the  end  of  March  to 
focus  on  licensing  its  intellectual 
property  for  low-power  microproces¬ 
sor  designs,  the  company  says. 
Transmeta  will  cut  jobs  on  March  31 
to  reduce  costs  in  hopes  of  generat¬ 
ing  a  profit  for  the  first  time  in  its  his¬ 
tory.  It  plans  to  fulfill  the  orders  of 
current  customers  for  its  Crusoe  and 
Efficeon  processors,  but  the  majority 
of  its  future  business  plan  centers  on 
licensing,  according  to  CEO  Matthew 
Perry.  Transmeta  was  one  of  the  first 
chip  makers  to  release  a  low-power 
processor  for  ultraportable  note¬ 
books  and  embedded  devices  that 
was  compatible  with  Microsoft’s 
software. 


vendor  SuSE  in  November  2003,  is  expect¬ 
ed  to  announce  next  month  at  the 
LinuxWorld  conference  in  Boston  that 
Open  Enterprise  Server  (OES)  is  available. 
OES  has  two  kernels  —  one  NetWare  and 
one  Linux  —  with  services  such  as  file 
and  print  and  identity  management  lay¬ 
ered  on  top.  With  OES,  IT  professionals 
have  a  migration  path  from  legacy 
NetWare  to  Linux  and  can  choose  which 
kernel  to  deploy  applications  upon. 

OES  has  been  in  private  and  open  beta¬ 
testing  since  August.  Novell  says  that  some 
5,200  unique  customers  have  down¬ 
loaded  the  beta  software. 

Among  them  is  Justin  Grote,  network 
architect  for  integrator  JWG  Networks  in 
Boise,  Idaho. 

“Novell  made  [and  delivered  on]  some 
big  promises  such  as  native  Samba,  Novell 
Storage  Services  and  shell  access  to  Linux 
servers  all  coordinated  through  Novell’s 
eDirectory”  he  says.  “The  integration  of 
iManager  to  manage  the  OES  Linux 
servers  is  quite  impressive.” 

Grote  says  he  is  also  happy  to  see  Novell 
resurrect  one  of  his  favorite  tools  — 
NetWare  Remote  Manager  —  on  Linux 
through  use  of  open  source  technology 
called  OpenWBEM. 

The  integration  of  Novell’s  Health 
Monitor  with  OES  also  is  helpful,  Grote 
says.  With  Health  Monitor,  administrators 
can  view  the  status  of  their  servers,  print¬ 
ers  and  other  networked  devices. 

“It’s  like  having  an  SNMP  manager  on 
every  single  server  monitoring  all  of  their 
vital  signs  and  then  passing  along  any 
warnings  or  concerns  to  whatever  central¬ 
ized  reporting  system  my  heart  desires,” 
Grote  says. 

Another  beta  tester,  Jeffrey  Johnson, 
gives  high  marks  to  Novell  for  making  it 
easy  for  administrators  to  migrate  data 
between  NetWare  and  Linux  file  systems. 

“Moving  Novell  Storage  Services  vol¬ 
umes  between  NetWare  and  Linux  is  like 
watching  a  David  Copperfield  show  — 
you  see  it  but  you  just  cannot  believe  it  is 
happening,”  says  Johnson,  who  deals  with 
100  NetWare  servers  as  a  systems  software 
engineer  at  Georgia  State  University  in 
Atlanta. 

Novell  also  has  optimized  NetWare’s  per¬ 
formance,  users  say. 

“All  of  the  previous  services  not  only  run 
flawlessly  but  run  faster  than  their  Net¬ 
Ware  counterparts,”  says  Ryan  Toole,  net¬ 


work  technician  for  Broome-Tioga  Board 
Of  Cooperative  Educational  Services  in 
Binghamton,  N.Y 

Johnson  also  has  noticed  the  improve¬ 
ments. 

“OES  on  NetWare  makes  some  excellent 


■  BY  JENNIFER  MEARS 

Meiosys,  a  start-up  that  specializes  in 
moving  applications  among  physical 
servers  to  maximize  performance  and 
availability  is  working  with  systems  ven¬ 
dors  to  bring  its  technology  to  enterprise 
data  centers. 

The  company  has  focused  on  the  high- 
performance  technical  computing  mar¬ 
ket  since  it  was  founded  in  2000,  but  the 
latest  release  of  its  MetaCluster  software  is 
designed  specifically  for  corporate  cus¬ 
tomers.  Its  technology  virtualizes  systems 
at  the  application  level,  meaning  that 
applications,  their  connections  and 
processes  are  separated  from  the  physical 
hardware  on  which  they  run. 


improvements  on  memory  management 
and  the  communication  stack  —  Win- 
Sock,  TCP/IP,”  he  says.  WinSock  is  an  API 
for  implementing  applications  such  as 
FTP  that  use  TCP/IP 

See  Novell,  page  24 


As  a  result,  stateful  applications  can  be 
moved  without  disruption  to  end  users  or 
processes,  says  Jason  Donahue,  Meiosys 
CEO.  Using  Meiosys’  technology, enterprise 
users  do  not  have  to  provision  excess 
hardware  in  case  of  spikes  in  demand 
because  the  application  can  be  spread 
out  on  more  servers  if  needed  and  then 
scaled  back  automatically. 

“What  they’re  providing  is  a  container 
around  an  application  so  that  the  applica¬ 
tion  can  move  between  servers,” says  Scott 
Donahue,  vice  president  at  Tier  1  Re¬ 
search  and  no  relation  to  the  Meiosys 
executive. “So  if  an  application  is  running 
on  a  server  and  it’s  requiring  more  pro¬ 
cessing  power  than  the  server  can  give, 
See  Meiosys,  page  24 
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Start-up  seeks  to  exploit  Itanium 

Ex-HP  executives  are  behind  server  software  maker  Secure64. 


■  BY  JENNIFER  MEARS 

A  start-up  founded  by  a  group 
of  former  HP  executives,  includ¬ 
ing  the  chief  architect  behind 
Itanium,  officially  took  the  wraps 
off  itself  last  week.  The  company, 
called  Secure64  Software,  an¬ 
nounced  plans  to  begin  ship¬ 
ping  software  this  summer  that 


promises  to  boost  the  speed  and 
security  of  Web  applications  on 
Itanium  servers. 

Secure64  bills  itself  as  a  64-bit 
software  development  company 
“poised  to  dramatically  improve 
the  security  and  performance  of 
network  communications.”  Its 
software  is  being  built  specifi¬ 
cally  for  Itanium  processors. 


Meiosys 

continued  from  page  23 

[Meiosys]  allows  you  to  take  that  application  and  move  it  to  another 
server  that  has  more  availability  or  is  a  higher-performance  server.” 

“What’s  important  about  that  move  is  that  it  doesn’t  disconnect  the 
users  or  kill  any  of  the  processes,”  he  says.“It  does  it  in  real  time  on  a 
live  system.” 

Scott  Donahue  says  other  firms  such  as  Ejasent  —  where  Jason 
Donahue  was  formerly  CEO  and  which  Veritas  Software  acquired  last 
year  —  offer  similar  application  virtualization  capabilities.  But  he  says 
Meiosys  is  slightly  ahead  of  the  game  because  its  product  has  been 
in  commercial  deployment  for  some  time  now. 

Meiosys  last  week  introduced  MetaCluster  3.0,  which  includes  a 
new  management  layer  that  lets  corporate  customers  set  policies  for 
application  relocation  based  on  business  rules. 

In  addition,  Version  3.0  features  XML-based  application  hooks  so 
that  its  management  tools  can  be  integrated  into  enterprise  manage¬ 
ment  suites  such  as  IBM  Tivoli  and  Computer  Associates  Unicenter. 

It  can  run  on  Intel  and  Advanced  Micro  Devices  chips.The  product 
will  be  available  on  Solaris  8  on  Sparc  in  the  first  quarter  and  will  be 
ported  to  Solaris  10  soon  after,  Meiosys  says.  Applications  do  not  have 
to  be  modified  to  be  virtualized  with  MetaCluster. 

Meiosys  officials  say  they  are  working  with  systems  vendors,  includ¬ 
ing  Sun  and  HP  which  use  MetaCluster  as  part  of  their  on-demand 
computing  products.  ■ 


Musical  chairs 


Meiosys  MetaCluster  technology  lets  users  shift 
applications  according  to  workload  demands.  A  look  at 
how  it  works: 


■  software 
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0  A  toy  maker  runs  SAP  on  three  Linux  machines.  During  the  holiday,  demand  spikes  and 
the  company  wants  to  temporarily  add  capacity.  MetaCluster’s  Application  Relocation 
Manager  (ARM)  software  lets  the  company  set  policies  directing  when  the  application 
can  be  shifted. 

©  The  application  is  wrapped  in  the  MetaCluster  software,  which  captures  application 
processes  and  connections  so  that  the  application  can  be  moved  in  real  time  without 
disruption. 

0  The  ARM  Policy  Manager  determines  that  the  application  needs  more  hardware,  and 
the  wrapped  application  containers  are  moved  onto  servers  that  the  toy  marker  has 
targeted  by  loading  the  MetaCluster  agent  onto  those  systems. 

0  When  demand  subsides,  the  ARM  Policy  Manager  moves  the  applications  back  onto  the 
original  three  servers. 


SECURE64  SOFTWARE 

Location: 

Englewood,  Colo. 

Founded: 

2002 

Funding: 

Initial  investments  of  more  than  $500,000  by 
founders  in  2002;  summer  of  2004,  angel  round  of 
funding  for  $2  million. 

Product: 

Software  for  exploiting  the  Itanium  platform  for 
better  network  security  and  system  performance. 

Fun  Fact: 

Bill  Worley,  a  Secure64  co-founder  and  the  man 
behind  Itanium,  read  a  book  about  gravity  and  wrote 
the  publisherto  point  out  errors  in  the  equations. 

The  company  was  co-founded 
by  Bill  Worley,  who  was  technical 
director  and  principal  architect 
of  PA-RISC  and  PA-Wide  Word, 
which  became  Itanium,  at  HP 
Worley,  Secure64’s  vice  president 
and  CTO,  has  three  patents  pend¬ 
ing  for  Secure64’s  secure  plat¬ 
form  software. 

Today  there  is  no  software  that 
takes  full  advantage  of  the  Itan¬ 
ium  architecture,  which  offers 
enhanced  security  capabilities 
with  four  privilege  levels  and 
compartmentalization,  for  exam¬ 
ple,  Worley  says.  In  addition,  it 
can  run  as  many  as  eight  instruc¬ 
tions  per  cycle,  offering  signifi¬ 
cant  performance  gains  over 
other  platforms. 

Instead,  most  operating  systems 
today  have  gotten  bulky  because 
they  are  designed  to  be  general 
purpose  and  run  on  multiple  plat¬ 
forms.  Security  is  an  issue  with 
these  operating  systems  because 
with  their  general-purpose  nature 
they  don’t  tap  into  hardware-level 
securities  available  on  chips  such 
as  Itanium. 

Secure64  aims  to  exploit  the 
unique  speed  and  security  fea¬ 
tures  in  the  Itanium  architecture 
that  are  not  employed  by  current 
Windows  and  Linux,  Worley  says. 

Today’s  operating  systems  typi¬ 
cally  use  two  security  levels  on 
the  hardware  platforms  on 
which  they  run.  Secure64’s  soft¬ 
ware  will  use  all  four  of  Itanium’s 
security  levels,  he  says.  As  for  per¬ 


formance,  Secure64  executives 
say  Pentium  architecture  chips 
run  just  one  instruction  per  cycle 
and  RISC-based  processors  max 
out  at  three,  while  Itanium’s 
Explicitly  Parallel  Instruction 
Computing  design  can  run  eight 
instructions  per  cycle. 

Secure64’s  aim  is  to  eliminate 
complexity  in  an  operating  envi¬ 
ronment  by  focusing  strictly  on 
Itanium’s  unique  features,  says 
Peter  Cranstone,  co-founder  and 
CEO  of  Secure64  and  a  co-devel- 
oper  of  data  compression  tech¬ 
nology  mod_gzip  for  Apache. 

“What  we’re  looking  to  do  is 
introduce  a  simpler  architecture 
environment  that  mitigates  risk 
when  it  comes  to  security  but 
also  provides  a  significant  per¬ 
formance  upside,”  he  says. 

While  Cranstone  would  not 
provide  specifics  about  the  com¬ 


pany’s  product,  he  did  say  it 
could  be  used  to  run  hardware 
appliances  such  as  firewalls  and 
boost  the  performance  of  SSL 
transactions  and  multimedia 
delivery 

Intel  wouldn’t  comment  on 
Secure64’s  technology  specifical¬ 
ly  but  applauded  the  firm’s  focus 
on  leveraging  Itanium’s  unique 
speed  and  security  features. 

Analysts  say  Secure64  has  a 
challenging  task  ahead  of  it.  One 
reason  is  that  the  Itanium  market¬ 
place  has  been  slow  to  take  off. 

“Itaniums  running  their  appli¬ 
cation  have  to  demonstrate  not 
only  performance  but  also 
price/performance.  And  they’ll 
still  be  pitching  their  product  on 
a  platform  with  very  small  mar¬ 
ket  share  compared  to  64-bit 
x86,”says  Gordon  Haff.an  analyst 
at  Uluminata.B 


Novell 

continued  from  page  23 

Praise  for  OES  even  comes  from  some  unexpect¬ 
ed  places. 

“The  Virtual  Office  Web  collaboration  tool  is  real¬ 
ly  nice  and  would  probably  make  a  good  alterna¬ 
tive  to  Windows  Sharepoint  Services,”  says  Oliver 
Garraux,  a  sophomore  and  technology  aide  at 
Maize  High  School  in  Wichita,  Kan.,  who  plans  to 
go  into  IT. 

“Some  of  the  administration  interfaces, 
such  as  iManager,  are  understandably  a 
little  awkward  for  someone  that  has  lit¬ 
tle  or  no  NetWare  experience  like  me,” 
he  says.  But  “I’m  excited  about  OES 
because  it  seems  to  be  one  of  the  first 
fairly  simple-  to-set-up  Linux  distributions 
that  can  compete  feature-wise  with 
Microsoft’s  Windows  Server” 

Not  quite  perfect 

While  the  reaction  to  OES  has 
been  generally  positive,  users  say 
that  several  features  are  missing. 


Johnson  says  he  would  like  to  see  the  ability  to 
cluster  eDirectory  on  the  NetWare  kernel  for  redun¬ 
dancy. 

“One  of  the  things  OES  has  that  NetWare  doesn’t 
is  identity  management  clustering,”  he  says.  “The 
OES  Linux  kernel  lets  you  create  two  clustered  vol¬ 
umes  for  fault-tolerance.” 

Grote  also  would  like  to  see  a  way  to  migrate 
NetWare  servers  to  Linux. 

“Now  you  have  to  wipe  the  NetWare  servers  if  you 
want  to  move  them  over  to  Linux,”  says  Grote, 
who  plans  to  run  iPrint,  eDirectory, 
iManager,  Apache,  MySQL,  PHP  and 
0  GroupWise  on  the  Linux  OES  kernel. 

3  Novell,  too,  is  an  avid  user  of  its  new 
operating  system  —  more  than  half  the 
company’s  servers  run  OES.  The  compa¬ 
ny  plans  to  release  the  next  version  of 
OES,  code-named  Cypress,  in  August 
2006.  The  company  says  it  will  ship 
Novell  client  software  for  Linux 
this  summer  and  a  64-bit  version  of 
OES  for  AMD64  and  Intel  EMT64 
this  fall. 

Novell  wouldn’t  disclose  pricing.H 


More  online! 


For  more  on  operating  system  software, 
visit  our  Network  Operating  System 
research  center. 
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■  WEB  SERVICES 
■  NETWORK  AND  SYSTEMS  MANAGEMENT 


■  InfoVista  last  week  debuted  soft¬ 
ware  to  help  customers  tackle  the 
performance  of  their  IP  telephony  net¬ 
works.  Vistalnsight  for  IP  Telephony  1.0 
monitors  performance  for  applica¬ 
tions  such  as  unified  messaging  and 
systems;  components  such  as  serv¬ 
ers,  databases  and  middleware;  and 
network  resources  including  routers, 
switches  and  voice  gateways.  The 
product  uses  a  centralized  manage¬ 
ment  console,  which  collects  and  cor¬ 
relates  data  gathered  across  distrib¬ 
uted  networks  via  software  agents. 
Entry-level  pricing  for  Vistalnsight  for 
IP  Telephony  1.0  starts  at  $30,000. 

■  IBM  last  week  announced  plans  to 
buy  Corio  for  $182  million  in  an  effort 
to  increase  its  application  services  for 
small  and  midsize  businesses.  Corio, 
an  application  management  provider, 
offers  hosted  software  options  with 
pay-as-you-go  pricing.  Its  services  are 
designed  to  enable  faster  implementa¬ 
tion  and  greater  ease  of  use  for  com¬ 
panies  using  business  software  from 
vendors  such  as  Ariba,  Concur, 
E.piphany,  Oracle,  PeopleSoft,  SAP 
and  Siebel  Systems. 

■  BlowSearch,  a  company  that  oper¬ 
ates  a  metasearch  engine,  is  branch¬ 
ing  out  into  the  instant-messaging 
arena,  with  BlowSearch  Secured 
Messenger,  a  service  that  offers  dif¬ 
ferent  levels  of  encryption  to  prevent 
malicious  hackers  from  intercepting 
communications.  Secured  Messenger 
also  lets  users  aggregate  into  its 
interface  buddy  lists  from  the  four 
main  public  IM  services:  AOL  Instant 
Messenger,  ICO,  Yahoo  Messenger 
and  Microsoft's  MSN  Messenger.  For 
a  quarterly  fee  of  $9.95,  "gold" 
Secured  Messenger  users  get  4,096- 
bit  encryption.  The  next  level,  “silver,” 
offers  256-bit  encryption  for  $7.95  per 
quarter.  The  “bronze”  level  offers  56- 
bit  encryption  for  $2.95  per  quarter.  A 
free  service  features  56-bit  encryp¬ 
tion,  includes  ads  and  offers  no  cus¬ 
tomer  support.  Secured  Messenger 
supports  Windows  95, 98,  NT,  2000, 

ME  or  XP.  It  also  requires  Internet 
Explorer. 


Users  grow  virtual  call  centers 


■  BY  ANN  BEDNARZ 

Office  Depot  is  in  the  process  of  shutting 
down  nearly  all  its  internally  operated  call 
centers  and  shifting  the  load  to  out¬ 
sourcers  —  in  particular,  outsourcers  who 
use  home-based  agents. 

The  office  supply  retailer  has  been  ex¬ 
ploring  the  “virtual  call  center”  model  for 
more  than  three  years,  and  today  relies  on 
about  1,400  remote  agents  employed  by 
its  outsourcing  partners.  “We  will  grow  to 
double  that  by  the  end  of  this  year,”  Julian 
Carter,  director  of  operations  at  Office 
Depot  in  Delray  Beach,  Fla.,  said  in  a  tele¬ 
conference  last  week. 

Virtual  call  centers  are  gaining  populari¬ 
ty  as  companies  look  for  alternatives  to 
running  a  traditional,  in-house  call  center 
or  using  an  offshore  outsourcer.  Using  out¬ 


sourced  work-at-home  agents  doesn’t 
offer  the  same  cost-savings  potential  asso¬ 
ciated  with  offshore  outsourcing,  but 
experts  say  it  eliminates  some  concerns 
about  cultural  differences  when  using  off¬ 
shore  providers. 

Office  Depot  is  shifting  to  the  virtual 
model  by  partnering  with  call  center  out¬ 
sourcing  companies  that  use  home-based 
agents,  including  WillowCSN.  Based  in 
Miramar, Fla., Willow  employs  2,000  home- 
based  agents  in  12  states.  This  month,  it’s 
been  recruiting  another  400  agents,  said 
Basil  Bennett, Willow’s  president  and  CEO, 
in  the  teleconference. 

Willow’s  competition  includes  other  spe¬ 
cialists  such  as  Alpine  Access,  Working 
Solutions  and  West  Corporation.  Research 
firm  Gartner  predicts  that  by  next  yearl0% 
of  call  centers  will  use  outsourced  work- 


at-home  agents  from  firms  such  as  these 
to  supplement  their  customer  service 
operations. 

Outsourcers  aren’t  the  only  route  to 
establishing  virtual  call  centers,  however. 
Some  companies  choose  to  adopt  the 
model  on  their  own,  such  as  JetBlue 
Airways. 

Since  its  inception  five  years  ago,  the  air¬ 
line  has  run  its  reservations  department 
using  home-based  agents.  Today  JetBlue 
employs  900  reservation  agents  working 
from  home  in  the  Salt  Lake  City  area. 

G.R.  Badger,  a  supervisor  at  JetBlue, 
joined  Carter,  Bennett  and  IDC  analyst 
Merle  Sandler  in  the  teleconference, 
which  focused  on  the  emerging  virtual 
call  center  industry  It  was  moderated  by 
Jack  Heacock,  vice  president  of  the 
See  Virtual  call,  page  26 


Software  lets  Mozilla  collaborate 


Sharing 

Advanced  Reality  has  developed  a  plug-in  for  both 
Mozilla’s  Firefox  and  Microsoft’s  Internet  Explorer  that 
lets  users  browse  the  Web  in  unison. 
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Jybe  adds  two  buttons  to  the  browser  that 
lets  users  start  a  collaboration  session  or  join 
a  current  session, 
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Jybe  adds  instant-messaging 
capabitiss  to  Internet  Explorer 
and  Firefox  browsers. 

"1  ' 


■  BY  JOHN  FONTANA 

While  Mozilla  Found¬ 
ation’s  Firefox  browser  tries 
to  carve  out  its  Internet 
niche,  Advanced  Reality  has 
delivered  a  collaboration 
plug-in  for  the  fledgling  Web 
client  that  just  might  help  it 
find  a  spot  on  corporate 
desktops. 

The  company  last 
week  released  Jybe, 
a  small  piece  of 
client  code  and  a 
companion  server, 
that  together  let 
users  link  their  browsers  to 
search  the  Internet  or  cor¬ 
porate  intranet  in  unison. 

There  is  also  a  version  of  the 
client  plug-in  for  Internet 
Explorer,  which  lets  Web 
page  collaboration  take 
place  between  users  regard¬ 
less  of  their  chosen  browser. 

Jybe,  which  adds  two  but¬ 
tons  to  the  browser  for  cre¬ 
ating  and  ending  sessions, 
also  adds  an  instant-messag¬ 
ing-like  text  chat  capability  directly  into 
the  browser. 

Advanced  Reality  says  the  collaboration 
will  work  well  for  customer  service/sup¬ 


port,  Web  conferences,  online  demonstra¬ 
tions  and  in  academic  settings  for  creating 
services  such  as  online  librarians  for  help¬ 
ing  users  conduct  Web-based  research. 


“It’s  a  convenience  thing,  a 
customer  service  element,” 
says  Landy  Haile,  a  sales 
associate  with  Scott  Gray 
Commercial  Real  Estate  in 
Houston.  “Sure  our  cus¬ 
tomers  can  already  see 
online  photographs  of  prop¬ 
erties,  but  we  can  walk  them 
through  details  of  the  finan¬ 
cial  statements  we  have 
online.”  The  company  focus¬ 
es  on  buying  and  selling 
apartment  buildings. 

Jybe  works  by  linking 
browsers  through  its  server, 
which  runs  on  Windows  and 
lets  users  view  the  same  URL 
at  the  same  time.  When  one 
user  changes  the  URL,  all 
users  in  the  Jybe  session  see 
the  new  Web  page.  Users  also 
can  store  files  on  the 
server  and  share 
those  files  with  oth¬ 
ers  during  a  collabo¬ 
rative  browsing  ses¬ 
sion.  Advanced  Real¬ 
ity  is  developing  a 
utility  that  will  let  FbwerFtoint 
presentations  be  converted  to  HTML. 

With  Jybe,  users  don’t  share  screens,  they 
share  only  the  small  bit  of  data  contained  in 
See  Firefox,  page  26 
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It  looks  like  the  concept  of  paying  for 
digital  music  might  catch  on  after  all. 
Some  in  the  music  industry  seem  to  be 
convinced  that  if  it  does  it’s  only  because 
the  music  industry  has  been  tackling 
kids.  But  I’m  not  so  sure. 

In  mid-January  the  International  Feder¬ 
ation  of  the  Phonographic  Industry  (IFPI) 
released  a  Digital  Music  Report  (www. 
nwfusion.com,  DocFinder:  5630)  that  says 
legal  music  downloads  in  2004  in  the  U.S., 
Germany  and  the  U.K.  together  totaled 
more  than  200  million  songs;  that  there 
are  now  230-plus  sites  that  offer  legal 
downloads;  and  that  the  2004  digital 
music  market  topped  $330  million.  All 
those  numbers  are  up  significantly  from 


Is  it  threat  or  availability? 


the  previous  year,  and  estimates  are  for  the 
digital  download  business  to  double  this 
year. 

In  a  possibly  related  story,  Apple  report¬ 
ed  that  it  sold  more  than  10  million  iPbds 
last  year.  Many  online  music  stores  now 
boast  more  than  a  million  songs  available 
for  download.  The  legal  download  world 
has  changed  dramatically  in  a  year,  but 
what  about  the  illegal  download  world? 

The  same  IFPI  report  says  that  the  num¬ 
ber  of  “infringing  music  files”  available  on 
the  Internet  declined  by  30  million, to  870 
million,  since  January  2004  and  that  the 
number  of  users  of  one  of  the  download¬ 
ing  networks  (Kazaa)  had  dropped  from 
3.2  million  to  2.3  million  over  the  year. The 
IFPI  counts  the  number  of  music  files 
offered,  but  1  didn’t  see  where  the  group 
counted  the  number  of  these  files  that  are 
actually  downloaded,  so  I’m  not  quite 
sure  what  the  relevance  of  the  number  of 
infringing  music  files  is  to  anything  real.  In 
any  case.it  looks  like  the  illegal  download 


world  has  shrunk  a  bit,  while  the  legal 
download  world  is  growing  quite  well. 

The  IFPI  report  and  pronouncements  by 
other  parts  of  the  music  industry  focus  a 
lot  of  attention  on  the  very  aggressive  “sue 
your  potential  customers”  mode  of  edu¬ 
cating  the  public  about  the  illegal  nature 
of  free  music  downloads.  Statistics  show 
that  awareness  has  risen  in  the  last  few 
years  that  music,  even  if  some  people  say 
it  should  be  free,  is  anything  but.  It  is  pos¬ 
sible  that  this  increase  in  awareness  is  at 
least  partially  a  result  of  the  early  lawsuits. 
But  because  the  latest  batch  of  suits 
received  almost  no  news  coverage,  I 
doubt  that  many  if  any  of  the  target  audi¬ 
ence  will  be  educated  in  this  way  going 
forward. 

For  a  number  of  years,  I  and  many  others 
have  said  that  lots  of  people,  although  not 
everyone,  would  prefer  to  be  honest  if 
there  were  an  easy  way  to  do  so 
(DocFinder:  5627). 

We  are  seeing  that  honesty  sells  if  some¬ 


one  is  selling  based  on  it. 

Another  reason  I  think  the  industry 
reliance  on  lawsuits  is  not  a  factor  here  is 
that  many  of  the  people  who  use  the 
Kazaa-like  services  are  young  —  the  very 
group  that,  on  the  whole,  assumes  they 
would  never  be  caught. 

Thus,  in  their  mind,  they  have  no  reason 
to  fear  the  lawsuits.  It’s  the  wonderfully 
integrated  player  with  download  service 
package  and  a  reasonable  price  for  just 
what  you  want  that  has  made  the  differ¬ 
ence,  not  an  industry  operating  in  bully 
mode. 

Disclaimer:  I’m  not  sure  there  is  a  way  to 
say  Harvard  is  not  a  bully  without  annoy¬ 
ing  someone,  so  I  won’t.  Suffice  it  to  say 
that  the  above  observation  about  success 
from  bullying  is  mine  alone. 

Bradner  is  a  consultant  with  Harvard 
University’s  University  Information 
Systems.  He  can  be  reached  at  sob@ 
sobco.com. 


Virtual  call 

continued  from  page  25 

Telework  Coalition. 

One  advantage  of  using  home-based 
agents  is  staff  retention,  Badger  said. 
Turnover  rates  at  JetBlue  are  exceptional¬ 
ly  low  at  4%  annually  Agents  enjoy  the 
flexibility  of  working  from  home,  and  it 
shows  in  their  performance,  he  said. 
“When  agents  are  happy,  revenue  is  going 
to  go  up,”  Badger  said. 

Attrition  improvements  are  huge,  Carter 
agreed.  Before  moving  to  a  virtual  model, 
Office  Depot  typically  saw  60%  turnover  of 
its  call  center  agents  in  a  year.  Going  virtu¬ 
al  immediately  cut  attrition  rates  in  half, 
and  they  dropped  to  the  20%  range  within 
the  first  year,  he  said.  Today  attrition  rates 
are  in  the  teens,  Carter  said. 

Attendance  also  is  up.“On  the  productiv¬ 
ity  side,  the  biggest  thing  we  see  is  a  reduc¬ 
tion  in  absenteeism,”  Carter  said.  He  esti¬ 
mates  the  company  has  cut  costs  between 
30%  and  40%  per  call  by  outsourcing, 
which  eliminates  many  operational  costs 
for  Office  Depot  and  lets  the  company 
take  advantage  of  a  variable  pricing 
model  based  on  call  volume. 

“It’s  a  good  alternative  to  completely 
going  offshore,”  Carter  said. 

As  a  whole,  the  telecommuting  industry 
has  gone  through  some  ups  and  downs 
over  the  last  decade.  The  number  of 
telecommuters  in  the  U.S.  peaked  in  1998 
and  then  declined  through  2002,  Sandler 
said.  It’s  just  beginning  to  recover,  she 
said. 

“When  things  get  tough,  people  tend  to 
return  to  corporate  life  and  give  up  some  of 
the  potential  lifestyle  gains  for  closer  daily 
contact  with  colleagues  and  supervisors,” 
Sandler  said. 

Sandler  broadly  defines  a  telecommuter 
as  someone  who  works  from  home  three 


Give  it  a  shot,  but 
don’t  go  it  alone 

By  next  year,  10%  of  contact 
centers  will  use  outsourced 
work-at-home  agents  as  part 
of  their  customer  service 
setup,  according  to  Gartner. 

or  more  days  per  month.  Home-based 
agents  are  a  subset  of  telecommuters,  with 
some  notable  distinctions.  “What  sets  vir¬ 
tual  agents  apart  is  that  they’re  likely  to 
have  formal  telecommuting  arrange¬ 
ments”  with  their  employers,  Sandler  said. 
“With  the  majority  of  telecommuters,  it’s 
very  much  on  an  ad  hoc  basis  and  there 
aren’t  formal  policies.” 

One  condition  driving  the  growth  in 
home-based  call  center  agents  is  dissatis¬ 
faction  with  offshore  outsourcing,  Sandler 
said.  “There’s  a  problem  with  quality  in 
some  of  the  offshore  call  centers,”  she 
said.  Using  U.S.-based  agents  working  from 
home  gives  companies  access  to  a  broad¬ 
er,  more  educated  workforce  that  is  suited 
to  up-sell  customers  and  handle  more 
complex  questions, she  said. 

The  desire  for  more  skilled,  flexible 
workers  drives  many  companies  to  use 
outsourced  services,  Bennett  said. “With  a 
virtual  workforce,  you’re  not  confined  to  a 
25-mile  radius  around  a  brick-and-mortar 
building  that  you  built.  You  can  go  find 
those  skilled  workers  regardless  of  where 
they  reside,”  he  said. 

Growth  in  broadband  services  to  the 
home  is  also  driving  virtual  call  centers, 
Sandler  said.  However,  broadband  access 
is  not  a  prerequisite  for  all  virtual  call 
centers. 


Willow  requires  its  agents  to  have  broad¬ 
band  access,  but  JetBlue  doesn’t  —  at 
least  not  yet.  Badger  admitted  dial-up 
connections  between  an  agent’s  home 
and  JetBlue’s  on-site  server  can  be 
painfully  slow,  but  the  system  has  worked 
so  far.  “As  we  continue  to  grow  and  the 
industry  continues  to  change,  broadband 
and  DSL  will  definitely  benefit  us,”  Badger 
said. 

One  challenge  early  adopters  acknowl¬ 
edge  is  management-related.  Work-at- 
home  initiatives  require  different  organi¬ 
zational  tactics  than  traditional  call  cen¬ 
ters,  Bennett  said.  Willow  monitors  its 
employees  using  workforce  automation 
software  that  handles  tasks  such  as  plan¬ 
ning,  scheduling  and  activity  manage¬ 
ment.  Recruiting  and  training  agents  also 
is  different  for  a  virtual  workforce  than 


Firefox 

continued  from  page  25 

a  URL,  which  keeps  bandwidth  consump¬ 
tion  at  a  minimum.  But  Jybe  has  its  limita- 
tions.The  sharing  is  read-only  which  means 
users  cannot  manipulate  any  data  on  the 
screen, such  as  filling  out  a  form.  Also,  there 
is  not  a  control  that  lets  one  user  be  the 
leader  of  the  browsing  session. 

Also,  everything  on  each  screen  hap¬ 
pens  independently  so  users  don’t  see 
each  other  moving  mouse  pointers  or 
scrolling  through  a  page. 

Advanced  Reality  plans  to  add  some  of 
those  features  in  future  versions. 

The  company  also  says  it  hopes  to  link 
the  software  with  instant-messaging 
buddy  lists,  e-mail  contact  lists  and  cor¬ 
porate  directories.  With  Jybe  1.0,  users 
must  send  a  request  via  IM,  email  or 
phone  to  provide  other  users  with  a  ses¬ 
sion  name  used  to  log  on  to  a  Jybe  multi¬ 
user  browser  session. 


one  in  a  physical  call  center,  Bennett  said. 

JetBlue  also  monitors  its  agents  closely 
asking  each  to  come  into  the  office  once 
a  month  for  a  team  meeting,  Badger  said. 
Once  every  quarter  managers  try  to  visit 
each  agent  at  home,  he  added. 

“The  biggest  hurdle  is  making  sure  that 
employees  feel  they  are  part  of  the  com¬ 
pany  Badger  said.“I  don’t  think  our  virtual 
call  center  is  perfect,”  but  it’s  leaps  and 
bounds  over  other  call  centers  he’s  seen, 
Badger  said. 

“The  virtual  call  center  is  not  necessarily 
applicable  to  every  single  industry  Sander 
said.  It  depends  on  the  types  of  calls  a 
company  gets  and  whether  those  calls 
require  advanced  skills  or  geographic 
affinity,  for  example.  “We’re  not  going  to 
have  everybody  dismantling  their  regular 
call  centers,”  she  said.B 


“What  we  are  doing  is  making  the  Web 
collaborative  through  the  browser  vs.  hav¬ 
ing  users  share  screens,”  says  Brian  Hoog- 
endam,  president  of  Advanced  Reality. 
Jybe  is  based  on  Advanced  Reality’s 
Presence-AR  technology,  v/hich  can  be 
added  into  any  number  of  applications  so 
users  can  share  them.  The  company 
already  offers  Presence-AR  adapters  for 
Microsoft  Word,  Excel  and  PbwerFbint, 
and  Adobe’s  Acrobat. 

Pricing  for  the  Jybe  server  has  not  been 
announced,  but  APdvanced  Reality  is  host¬ 
ing  a  Jybe  server.  The  client  plug-in  is  free 
and  supports  Internet  Explorer  6.0  and, 
later  on,  Windows  2000  or  above,  and 
Firefox  1.0  on  Windows,  Linux  or  Mac¬ 
intosh.  ■ 

Web 

Applications 

Subscribe  to  our  free  newsletter. 
DocFinder:  5434  www.nwfusion.coin 


JUST  BECAUSE  THE  SYSTEM  IS  DOWN 
DOESN’T  MEAN  THE  PEOPLE  USING  IT  SHOULD  BE 


...  ■ 

Constant,  uninterrupted  access  to  critical  data,  systems  and  people.  Even  when  something  goes  wrong.  That’s  Information  Availability.  And  one  of 
the  best  ways  to  virtually  guarantee  Information  Availability  is  by  running  your  production  systems  out  of  our  facilities.  You  manage  your  applications  • 

YvM:.7  •«'V!§®triS3SBi H 

and  data  while  SunGard  Availability  Services  helps  to  ensure  that  the  infrastructure  and  technical  support  you  need  is  always  on.  SunGard  can.  ^ 
offer  a  secure  and  scalable  environment  at  a  lower  operational  cost  for  production.  Plus  we  have  over  60  state-of-the-art  hardened  facilities  with  \V. 
network,  power  and  equipment  redundancies  that  are  unparalleled.  For  a  free  copy  of  the  I  DC  SUNGARD 
White  Paper:  “Ensuring  Information  Availability”  visit  www.availability.sungard.com/idcwp.  Availability  Services 


Keeping  People  •  ^ ; 
and  Information 
Connected r' 


"We  have  3,000  servers  at  customer  sites  worldwide. 
My  team  of  four  manages,  monitors,  makes  changes, 
and  does  upgrades  without  leaving  our  desks." 

Saori  Fotenos 

IT  Manager,  Reuters 


Make  a  name  for  yourself  with  Windows  Server  System. 

Microsoft  Windows  Server  System  makes  Reuters 
infrastructure  easier  to  manage.  Here's  how:  In 
the  past,  updating  Reuters  servers  deployed  at 
customer  sites  required  dispatching  a  Reuters 
technician  to  the  customer  site.  But  now,  using 
Windows  Server  2003,  Reuters  can  manage 
everything  remotely,  allowing  them  to  invest 
their  resources  in  new  products  and  added 
services.  It's  software  that  helps  you  do  more  with 
less.  Get  the  full  Reuters  story  and  a  hands-on 
management  tool  at  microsoft.com/wssystem 
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Windows 
Server  System 


Windows  Server  System'*  includes  these  products: 


Server  OS 

Windows  Server’" 

Operations  Infrastructure 

Systems  Management  Server 

Application  Center 

Operations  Manager 

Internet  Security  &  Acceleration  Server 

Windows"  Storage  Server 

Application  Infrastructure 

SQL  Server"' 

BizTalk*  Server 

Commerce  Server 

Content  Management  Server 

Host  Integration  Server 

Information  Work  Infrastructure 

Exchange  Server 

Office  SharePoinr  Portal  Server 
Office  Live  Communications  Server 
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Our  II*  Event' 


•  February  22  -  25,  2005 
Hyatt  Regency  Miami 
Miami,  Florida 

itexpo.com 

The  VoIP  Authority 
Since  1998 


Witness  The  Evolution 
of  IP  Telephony! 
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Sessions  for  Enterprise/Government 


*  VoIP  Selection  &  Deployment 

•  VoIP  Security 


VoIP  Integration 
VoIP  Regulation 
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Sessions  for  Service  Providers 

■  .  •-  ■ 

•  VoIP  Peering  Summit  •  Security  in  the  Network 

•  VoIP  e91 1  Summit  *  VoIP  Regulation 

•  Triple  Play 


Sessions  for  Developers 
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*  Open  Source  Telephony 


SIP  Workshop 


Over  100  Exhibi  tors 

All  New  Educational  Sessions! 
Special  Reseller  Soluti  is  Day 
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SBC  rolls  out  WAN  monitoring  service 

Uses  Visual  Networks  product  as  add-on  to  managed  network  management  offerings. 


■  BY  JIM  DUFFY 

SBC  has  unveiled  a  network  monitoring 
service  designed  to  let  businesses  track 
network  and  application  performance  in 
multiple  locations,  regardless  of  the  carri¬ 
er  network  being  used. 

SBC’s  PremierServ  Network  Manage¬ 
ment  Wide-Area  Network  View  monitor¬ 
ing  option  provides  real-time  tracking  of 
applications  running  across  a  network  in¬ 
frastructure.  It  is  intended  to  help  compa¬ 
nies  quickly  isolate  applications  respon¬ 
sible  for  poor  response  times;  optimize 
bandwidth  for  key  applications;  under¬ 
stand  and  trace  virus  traffic  within  a  net¬ 
work;  and  validate  service-level  agree¬ 
ments  and  class-of-service  delivery  for  IP 
applications. 

The  service  uses  Visual  Networks’ Visual 
UpTime  Select,  which  employs  so-called 
“analysis  service  element”  agents  to  moni¬ 
tor  a  customer’s  local  loop,  port  and  end- 
to-end  circuit  network  elements  in  real 


time. This  network,  server  and  application 
performance  data  is  collected  and 
archived  in  a  back-end  database  that  mul¬ 
tiple  users  can  view  and  share  simultane¬ 
ously  to  plan  capacity,  create  reports,  trou¬ 
bleshoot  performance  problems  and 
monitor  events,  according  to  Visual. 

SBC  also  provides  help  desk  support  for 
WANView.  Under  a  three-year  contract,  the 
service  is  available  for  $135  per  month, 
per  device,  for  T-l  network. 

5  tiers  offered 

WANView  is  an  addition  to  SBC’s  portfo¬ 
lio  of  PremierServ  managed  network 
management  services.  SBC  offers  five  tiers 
of  network  management  services  depend¬ 
ing  on  a  business’  needs: 

•  Basic:  SBC  engineers  assist  a  cus¬ 
tomer’s  IT  staff  by  monitoring  a  network’s 
routers,  switches  and  hubs,  and  alerting 
the  customer  to  any  equipment  problems 
or  faults. 

•  Essential:  SBC  engineers  isolate  and 
resolve  network  faults,  deliver  24-hour 
technical  assistance,  and  provide  a  way 
for  customers  to  open  and  view  trouble 
tickets  via  the  Web. 

•  Complete:  In  addition  to  Essential  ser¬ 
vices,  SBC  provides  Web-based  perfor¬ 
mance  reports  and  monthly  perfor- 


Tracking  apps 


Features  of  SBC’s  WAN  View  service 


Based  on  Visual  Networks' Visual 
UpTime  Select. 


Monitors  customer’s  local  loop,  port 
and  end-to-end  circuits. 

Helps  isolate  applications 
responsible  for  poor  response 
times. 

Optimizes  bandwidth  for  key 
applications. 


•  Traces  virus  traffic. 

•  Validates  IP  SLAs  and  class-of- 
service. 


mance  summaries  of  contracted  man¬ 
aged  devices  that  indicate  the  current 
network  health. 

•  Performance  Reports  Only:  This 
option  consists  of  the  same  reporting 
capability  as  the  Complete  tier. 

•  WAN  View:  Available  as  a  stand¬ 
alone  option  for  managed  service  cus¬ 
tomers  or  as  an  add-on  to  service  levels 


outlined  above. 

Basic  services  costs  $70  per  month,  per 
device,  while  Essential  costs  $100  and 
Complete  costs  $125.  All  prices  apply  to 
a  three-year  contract  and,  including  WAN 
View,  reflect  a  price  reduction  of  up 
to  28%. 

This  price  reduction,  ostensibly  intended 
to  attract  more  buyers,  comes  as  prices 
for  business  data  services  already  are 
falling  15%  to  20%  annually. 

“SBC  recognizes  that  it  is  a  buyer’s  mar¬ 
ket,  and  the  company  is  going  with  the 
flow  to  increase  sales  of  managed  ser¬ 
vices  .  .  .  and  gain  market  share  at  the 
expense  of  its  competitors,”  Current 
Analysis  says  in  a  report  on  the  new  WAN 
View  service. 

Separately,  SBC  now  offers  enterprise 
customers  a  network  management  tool 
that  lets  them  monitor  the  performance 
of  and  receive  alarms  for  their  SBC  Dedi¬ 
cated  SONET  and  Multi-Service  Optical 
Networking  (MON)  Ring  services.  This 
tool  lets  customers  verify  the  continuity 
of  their  SONET  and  MON  Ring  services, 
and  gather  information  for  network  opti¬ 
mization. 

The  monitoring  tool  can  be  set  up  to 
provide  a  direct  raw  data  feed  or  a  Web- 
based  GUI  option.  ■ 


Polaris  releases  cross-connect  switch 


■  BY  JIM  DUFFY 


■  France  Telecom  is  trying  to  buy 
the  remaining  45.8%  of  international 
service  provider  Equant  that  it  does 
not  already  own.  The  deal,  an¬ 
nounced  last  week,  is  valued  at 
about  $736  million.  Earlier  in  the 
month  Equant  requested  a  $250  mil¬ 
lion  loan  from  France  Telecom  to 
help  the  company  meet  its  financing 
requirements  through  2006.  France 
Telecom  agreed  to  the  loan.  E quant’s 
board  has  not  voted  on  the  latest 
deal,  which  also  would  be  subject  to 
regulatory  approval. 

France  Telecom  is  the  dominant 
service  provider  in  France.  In 
November,  BT  Group,  the  dominant 
service  provider  in  the  U.K.,  an¬ 
nounced  plans  to  acquire  interna¬ 
tional  service  provider  Infonet.The 
deal  is  valued  at  $965  million. 

Equant  and  Infonet  compete  with 
AT&T  and  MCI  to  win  contracts 
from  large,  multinational,  enterprise 
business  users. 


Fblaris  Networks,  a  5-year-old  maker  of 
next-generation  cross-connect  systems, 
has  announced  general  availability  of  its 
OMX  optical  multi-service  multi-band 
switch,  which  is  intended  to  assist  ser¬ 
vice  providers  in  migrating  from  legacy 
TDM  transport  networks  to  multi-service 
infrastructures. 

The  Polaris  OMX  consolidates  SONET 
rings  and  switches/grooms  multi-band 
traffic.  It  combines  the  capabilities  of  a 
digital  cross-connect,  SONET  add/drop 
multiplexer  and  a  Layer  2  switch. 

The  OMX  provides  240G  to  2T  bit/sec  of 
wideband  DS-1/VT1.5,  broadband  DS- 
3/STS-l  and  “superbroadband”  STS-Nc 
switching  capability. 

It  uses  Generalized  Multi-protocol 
Label  Switching  (GMPLS)  as  its  control- 


plane  signaling  mechanism  to  automate 
end-to-end  service  provisioning. 

GMPLS  is  an  emerging  standard  for  inte¬ 
grating  the  control  functions  of  routers 
and  optical  transport  systems. 

The  OMX  is  designed  to  go  up  against 
wideband  cross-connects  from  Tellabs 
and  Alcatel,  and  broadband  systems  from 
Ciena,  Lucent  and  Mahi  Networks. 

The  differentiator  for  the  OMX  is  its 
VT1.5  fabric,  whereas  competitive  offer¬ 
ings  provide  VT1. 5  grooming  on  a  per-slot 
basis,  according  to  Fblaris  CEO  Surya 
Panditi.  Even  though  the  OMX  can  func¬ 
tion  as  a  broadband  cross-connect,  it’s 
better  serving  as  an  adjacent  node  to 
those  systems  for  more  detailed  groom¬ 
ing,  Panditi  says. 

So  far,  service  provider  MacLeod  USA 
has  deployed  an  OMX,  under  a  three- 
year  agreement  and  after  more  than  a 


year  in  lab  and  field  trials.  Polaris  has 
another,  smaller  customer  for  the  OMX, 
Panditi  says. 

That’s  not  much  to  show  after  almost  five 
years  in  the  making,  but  Panditi  says  it’s  a 
start.  He  says  there’s  “a  lot  of  interest”  from 
other  carriers  but  they  are  hesitant  to  buy 
from  such  a  small  company,  especially 
after  the  telecom  bubble. 

“This  is  an  issue  with  large  carriers,” 
Panditi  says.  “The  ‘build  it  and  they  will 
come’  days  are  over." 

Another  carrier  has  informed  Polaris 
that  it  needs  to  partner  with  a  bigger,  more 
established  company  to  get  any  substan¬ 
tial  business  from  it. 

In  the  meantime,  Polaris  is  seeking  an 
undisclosed  amount  of  additional  fund¬ 
ing,  Panditi  says. 

Pricing  for  the  OMX  ranges  from 
$200,000  to  $800,000.  ■ 
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Praise  for  Powell  doesn’t  square  with  the  facts 


Following  FCC  Chairman  Michael 
Pbwell’s  announcement  that  he  will 
resign  next  month,  commentators 
tumbled  all  over  themselves  to  praise  the 
outgoing  chairman  for  his  “commitment 
to  competition,”  “support  of  free  speech” 
and  “deep  understanding  of  innovative 
technologies.” 

Wow,  what’s  next?  Giving  American  Idol 
host  Simon  Cowell  the  Nobel  Peace  Prize 
for  his  contributions  to  public  civility  and 
graciousness? 

U.S.  Rep.  Cliff  Stearns  (R-Fla.),  a  member 
of  the  House  Subcommittee  on  Telecom¬ 
munications  and  the  Internet,  says: 
“Chairman  Powell  fought  hard  to  promote 
competition  and  deregulation  in  key  parts 
of  the  telecommunications  arena.” 

Let’s  see  . . .  this  is  the  guy  who  effective¬ 
ly  eliminated  local-loop  competition  by 
rolling  back  the  rules  mandating  a  level 


playing  field  for  competitive  providers, 
which  led  to  the  demise  of  the  competi¬ 
tive  local  exchange  carriers.  He’s  the  guy 
who  trashed  the  constraints  keeping 
media  mega-companies  from  dominating 
television,  newspapers  and  radio  stations, 
ultimately  resulting  in  a  handful  of  com¬ 
panies  controlling  half  of  the  media  out¬ 
lets  in  the  U.S. 

Decimating  the  number  of  competitors 
isn’t  exactly  a  compelling  demonstration 
of  your  commitment  to  competition. 

How  about  those  who  laud  the  outgo¬ 
ing  chairman’s  “support  of  the  First 
Amendment,” such  as  the  Media  Institute, 
a  not-for-profit  research  and  advocacy 
group  that  awarded  Fbwell  its  Freedom  of 
Speech  award?  The  Media  Institute  says 
Powell  “quickly  established  himself  as  a 
vigorous  and  outspoken  defender  of  the 
First  Amendment.” 

With  defenders  like  Powell,  the  First 
Amendment  doesn’t  need  enemies.  Under 
Powell’s  leadership,  censorship  fines 
increased  from  $48,000  to  $7.7  million  per 
year,  Howard  Stern  fled  the  airwaves  for 
satellite,  and  TV  stations  began  imple¬ 
menting  delayed  broadcasting  of  live 


With  defenders  like 
Powell,  the  First 
Amendment  doesn't 
need  enemies. 

events  so  they  could  delete  offending 
words  or  images.  If  that’s  the  First 
Amendment  in  action,  I’m  Marie 
Antoinette. 

My  favorite  comments  praise  Pbwell’s 
deep  understanding  of  complicated 
technologies  such  as  VoIP  Cisco  CEO 
John  Chambers  uttered  a  howler. 
“Chairman  Powell  has  been  a  visionary 
in  his  leadership  of  the  FCC  as  he  truly 
understands  Internet  technology  and  its 
implications  for  the  future  of  our  coun¬ 
try?’  he  said. 

Right.  That  would  be  the  same  Fbwell 
who  said  that  physical  networks  will  go 
away  because  new  technologies  like  VoIP 
will  make  them  obsolete.  (That’s  like  say¬ 
ing  roads  will  disappear  because  Detroit 


is  making  intelligent  cars). 

If  you  think  Powell  really  understands 
Internet  technology,  look  for  Paris  Hilton 
to  start  lecturing  on  the  theory  of  quan¬ 
tum  gravity. 

Don’t  get  me  wrong,  I’m  not  saying 
Powell  doesn’t  deserve  accolades.  I’m 
thrilled  about  the  upcoming  public  spec¬ 
trum  allocation. 

And  Stern  is  probably  one  of  the  best 
things  that  ever  happened  to  satellite 
radio.  (Speaking  of  ol’  Howard  —  of 
whom  I’m  not  a  fan  —  we  in  satellite  radi¬ 
oland  have  figured  out  this  really  cool 
technology  that  gets  rid  of  offensive  con¬ 
tent  at  the  push  of  a  button.  It’s  called 
changing  the  channel.) 

But  if  you  want  to  praise  Pbwell’s  com¬ 
mitment  to  competition,  defense  of  the 
First  Amendment  and  deep  understand¬ 
ing  of  Internet  technologies  ...  go  ahead. 
And  make  that  tax  check  out  on  April  15 
to  the  Ministry  of  Plenty,  not  the  IRS. 

Johnson  is  president  and  chief  research 
officer  at  Nemertes  Research,  an  indepen¬ 
dent  technology  research  firm.  She  can  be 
reached  at  johna@nemertes.com. 


Premier  Sponsors 


VON  is  the  one  VoIP  event 
you  cannot  afford  to  miss! 

Get  the  latest  on  IP  communications  markets, 
technology  and  regulation  straight  from  the 
source,  at  Spring  VON. 

Learn  direct  from  the  implementation 
experiences  of  leading  service  providers  and 
enterprise  network  managers.  Understand  the 
market  and  regulatory  trends. 

Plus,  network  with  peers,  partners  and 
suppliers. 


CONFERENCE:  4  days,  300+ 
expert  speakers,  6  Conference  tracks. 

EXPO:  225  companies  showcasing 
the  latest  IP  communications  products 
under  one  roof! 
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Users  laud  IP  services  that  ‘stretch'  frame 


■  BY  DENISE  PAPPALARDO 

Frame  relay  to  IP  services  let  users  keep  the  frame 
relay  networks  they  trust,  while  increasing  connectiv¬ 
ity  between  sites,  typically  without  increasing  spend¬ 
ing.  These  offerings  also  let  users  take  baby  steps  toward 
IP  which  is  important  for  customers  that  are  not  comfort¬ 
able  with  a  complete  technology  swap. 

Frame  to  IP  services  let  legacy  frame  users  preserve  cus¬ 
tomer  premises  equipment  (CPE)  investments,  move  to  a 
flexible  fully  meshed  network  architecture  without  the 
high  costs  associated  with  a  fully  meshed  frame  network, 
and  double  bandwidth  with  little  to  no  increase  in 
monthly  expenditures, says  Rosemary  Cochran,  principal 
at  consulting  firm  Vertical  Systems  Group. 

It  also  offers  the  benefits  of  IP  addressing,  which  support 
fully  meshed  networks.  And  because  IP  networks  are 
more  cost-efficient  for  carriers  to  support  than  legacy 
frame,  users  often  can  increase  bandwidth  without 
increasing  their  service  costs. 

“It’s  true  that  many  customers  are  looking  to  move  to 
100%  IP  in  the  longer  term,  but  they  are  not  necessarily 
ready  to  do  that  right  awajf  Cochran  says.“The  reasons 
are:  There  is  not  significant  cost  savings  offered  to  make 
the  move,  and  the  resources  it  takes  to  make  such  a 
wholesale  change  are  substantial.” 

Users  also  cite  concerns  about  having  their  traffic  tra¬ 
verse  the  Internet  and  a  lack  of  good  management  tools. 

Turning  to  AT&T 

One  user  that  chose  frame  to  IP  over  an  IP  VPN  service 
is  Michael  Baker  Corp.,  which  rolled  out  AT&T’s  IP 
Enabled  Frame  Relay  service  to  23  locations  three  years 
ago.  Today  35  sites  are  connected  to  the  network. 

Initially  the  company  hoped  to  move  to  a  carrier-agnos¬ 
tic  IP  VPN  setup,  says  Davidson  Scott,  director  of  IT  archi¬ 
tecture  and  infrastructure  at  the  engineering  services  firm 
for  the  energy  sector  in  Moon  Township,  Pa.  But  at  the 
time  “we  didn’t  feel  the  technology  was  ready  from  a 
management  perspective,  which  would  have  required 
quite  a  bit  of  custom  management  tools,”  he  says. 

“We  discussed  it  with  AT&T,  and  that’s  when  they  came 
through  with  IP  Enabled  Frame  Relay  Scott  says.“They  hit 
our  key  requirements  to  have  scalability,  and  AT&T  is  also 
managing  our  routers  at  every  site. 

“We  had  AT&T’s  frame  relay  service,  and  really  the  hub- 
and-spoke  network  wasn’t  working  for  us  anymore,”  Scott 
says. “The  10-year-old  architecture  wasn’t  scalable.” 

In  some  sites,  Scott  was  able  to  reuse  some  of  the  com¬ 
pany’s  CPE  frame  relay  gear,  but  at  least  75%  of  locations 
needed  new  routers  capable  of  handling  higher  band¬ 
width  and  converged  traffic. 

After  Michael  Baker  migrated  to  AT&T’s  IP  Enabled 
Frame  Relayservice.it  deployed  VoIP  video  and  a  new 
ERP  application  that  would  not  have  worked  with  the 
company’s  previous  network,  Scott  says. 

Another  benefit  was  that  AT&T  was  able  to  help 
consolidate  the  company’s  Internet  access  connectivity 
“Out  of  desperation,  to  keep  performance  of  our  legacy 
frame  relay  network  up  to  an  acceptable  level,  we  had 
multiple  entry  points  to  the  Internet.  We  had  three 
Internet  access  pipes  with  three  firewalls  to  manage.  It 
was  difficult  to  keep  that  in  sync,”  he  says.The  engineering 


firm  instead  added  a  node  on  its  IP  Enabled  Frame  Relay 
network  at  AT&T’s  data  center  in  Ashburn.Va.  In  addition 
to  consolidating  its  Internet  access  connectivity  to  the 
carrier’s  data  center,  it  also  moved  60  discrete  Web  servers 
for  various  projects  to  the  same  site. “That  allowed  us  to 
centralize  those  servers  in  a  more  professional  environ¬ 
ment  and  improve  uptime.  [The  servers]  are  no  longer  sit¬ 
ting  under  someone’s  desk.They  are  in  a  data  center  with 
physical  security  and  redundant  power]’ he  says. 

When  the  company  rolled  out  its  new  Oracle  1  li  ERP 

IP-enabled  frame  a  good  fit, 
but  not  for  everyone 

IP-enabled  frame  relay  services  have  caught 
on  with  some  business  users  who  are 
leveraging  their  investment  in  frame  while 
reaping  the  benefits  of  IP.  But  only  5%  of  all 
ports  deployed  today  support  such  services. 

Frame  ports  today 


1.4  million 


54%  are  low-speed  56K  bit/sec  ports. 

756,000 

46%  are  fractional  T-1  or  higher. 

Ip  644,000 

But  only  70,000  high-speed  ports  are  frame  to  IP. 

SOURCE:  VERITICAL  SYSTEMS  GROUP 

system,  it  also  deployed  the  server  and  software  in  AT&T’s 
data  center,  where  the  carrier  manages  both. 

“Because  of  the  flexibility  with  the  new  architecture,  we 
were  able  to  roll  out  [Oracle  111]  without  modifying  the 
basic  network  architecture,”  Scott  says.The  switch  “ended 
up  being  a  significant  cost  savings  and  increased  our  reli- 
ability”The  cost  savings  came  from  the  new  network 
architecture,  dropping  its  Internet  connectivity  from  three 
providers  to  one  and  eliminating  the  maintenance  costs 
of  three  firewalls  to  one. 

Another  user  that  has  benefited  from  frame  relay  to  IP 
services  is  Wilson  Sporting  Goods  in  Chicago,  a  wholly 
owned  subsidiary  of  Amer  Group  in  Finland. 

About  a  year  ago,  Wilson  Sporting  Goods  in  the  U.S. 
migrated  to  MCI’s  Private  IP  service,  says  Jermaine  Mason, 
IT  manager.  It  ditched  its  legacy  AT&T  frame  relay  net¬ 
work  for  a  more  modern,  12-node  version  from  MCI. 

“Europe  led  the  charge  and  first  migrated  to  MCI’s 
Private  IP  service,”  Mason  says.“We  started  to  look  for  syn¬ 
ergies  between  Europe  and  the  U.S.  like  getting  on  the 
same  infrastructure.” 

Previously  Wilson  used  AT&T  for  frame  relay  but  “we  just 
did  not  feel  [AT&T]  was  as  ready  to  support  us. We  were 
much  more  comfortable  with  MCI  than  any  of  the  other 
providers  we  talked  to,”  Mason  says.“We  were  also  motivat¬ 
ed  by  the  key  point  that  we  could  get  our  entire  world¬ 
wide  enterprise  on  the  same  platform.” 

Mason  says  he  also  liked  the  idea  that  even  though  he’s 
getting  the  benefit  of  IP  his  traffic  is  not  running  over  the 


Internet,  which  is  a  drawback  for  some  IP  VPN  services. 
“Our  traffic  is  secure  on  MCI’s  network,  and  we  don’t  have 
any  issues  regarding  service  levels,”  he  says. 

The  company  needed  to  deploy  new  Cisco  routers  at 
most  of  its  12  sites.The  old  DSU/CSUs  were  outdated  and 
could  not  support  integrated  service.  And  because  the 
service  operates  primarily  on  Cisco  gear,  Mason  says  trou¬ 
bleshooting  between  his  network  and  MCI’s  is  smoother 
because  he  has  Cisco  routers.“It  wasn’t  a  huge  invest¬ 
ment,”  he  says. 

“Another  thing  that  attracted  us  to  Private  IP  was  built-in 
redundancy]’ he  says.  Mason  explains  that  if  headquarters 
loses  connectivity  it  would  not  affect  the  rest  of  the  net¬ 
work.  With  traditional  frame  relay,  if  the  hub  —  in  a  hub- 
and-spoke  architecture  —  goes  down,  the  entire  frame 
relay  network  goes  down. 

One  added  benefit  is  that  Wilson  could  upgrade  band¬ 
width  to  many  of  its  sites  without  increasing  monthly 
expenses.  Most  sites  had  56K  up  to  128K  bit/sec  frame 
relay  connections  with  a  handful  of  sites  at  256K  bit/sec. 
The  company  upgraded  many  to  512K  bit/sec  with  a  cou¬ 
ple  of  sites  supporting  multiple  T-1 , 1.544M  bit/sec,  frame 
connections. 

‘A  fully  meshed  frame  relay  network  is  much  more 
expensive  than  Private  IP,”  he  says. 

Mason  adds  that  he  can  see  a  time  when  going  all  IP 
will  become  more  attractive,  especially  when  the  compa¬ 
ny  looks  to  deploy  VoIRbut  for  now  a  mix  of  frame  and  IP 
fits  the  bill. 

Using  MCl's  Private  IP 

For  Euler  Hermes  ACI,  frame  relay  still  looks  to  have  a 
long  shelf  life.Two  years  ago,  Euler  Hermes  moved  its 
North  American  headquarters  from  Baltimore  to  Owing 
Mills,  Md.  At  the  same  time,  it  moved  from  legacy  frame 
relay  to  MCl’s  Private  IP  It  made  the  move  to  save  money 
and  increase  bandwidth, says  Dave  Kozlowski,  vice  presi¬ 
dent  of  technical  services  at  the  international  credit  insur¬ 
er’s  North  American  arm. 

“Our  sales  agent  kept  pushing  the  service  telling  us  it 
was  40%  cheaper,”  Kozlowski  says.  But  instead  of  just 
reducing  costs,  he  opted  for  faster  pipes  and  doubled 
bandwidth  to  its  seven  network  sites 

Euler  Hermes  had  supported  64K  to  128K  bit/sec  frame 
relay  connections  with  a  committed  information  rate 
(CIR)  of  32K  bit/sec.That’s  a  CIR  with  less  bandwidth  than 
any  dial-up  modem  deployed  in  the  past  five  years. 

“Now  everyone  has  a  256K  bit/sec  connection  and 
Owning  Mills,  Md.,  and  Hunt  Valley,  N.Y,  have  T-1, 1.544M 
bit/sec  connections,”  Kozlowski  says.  Now  each  site  has  a 
CIR  of  64K  and  768K  bit/sec  at  the  two  T-1  sites. 

He  considered  moving  to  a  CPE-based  IP  VPN  service 
but  says  it  was  “too  expensive.”  It  would  have  required  new 
routers  at  each  site  and  presented  management  issues. 
“We’re  a  small  IT  shop  of  four.  I  don’t  have  time  to  manage 
remote  routers  with, so  much  else  to  get  done,’’he  says. 

MCI  manages  the  Private  IP  service,  but  Kozlowski  si  ill 
has  a  level  of  control  over  his  network  through  online 
management  tools. 

Kozlowski  doubled  his  bandwidth  for  the  same  price 
he  paid  for  his  legacy  frame  relay,  which  MCI  also  suj> 
ported.  He’s  happy  with  the  transition  and  doesn  i  see 
exactly  when  frame  relay  usefulness  will  expii-  SS 
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Converging 
our  Network  - 

What  should  you 
be  thinking  about? 

VoIP  —  Is  it  just  another  application  running 
on  an  IP  network?  Or  does  it  provide  an  oppor¬ 
tunity  for  a  wide  range  of  capabilities  that 
previously  were  either  not  technically  or  not 
economically  feasible? 

The  informed  IT  professional  looking  to  con¬ 
verge  networks  has  much  to  consider. 

•  What  is  it  about  voice  transmission 
that  makes  it  so  unique? 

•  What  about  assessing  readiness  for 
convergence? 

•  What  type  of  design  makes 
sense? 

•  What  about  ongoing  operations 
and  management? 

The  one  certainty  is  that  to  support  VoIP  and 
other  demanding  applications  successfully,  IT 
organizations  need  to  change  their  approach  to 
network  management. 

To  get  a  detailed  understanding  of  these  ques¬ 
tions  and  more,  take  advantage  of  the  free  offer 
from  Network  World  Fusion  and  secure  your  copy 
of  Recommendations  for  Implementing  and 
Managing  Converged  Networks. 

About  the  Authors 

Jim  Metzler  is  a  principle  in  Ashton,  Metzler  & 
Associates,  a  consulting  firm  that  focuses  on 
leveraging  technology  for  business  success. 
During  his  career,  he  has  worked  in  virtually 
every  major  segment  of  the  IT  industry. 

Steven  Taylor,  analyst  and  broadband  packet 
evangelist,  is  President  of  Distributed  Networking 
Associates  and  Publisher  of  Webtorials.Com.  He 
is  one  of  the  industry's  most  published  authors  on 
the  topic  of  broadband  networking  techniques. 
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Network  World  Fusion  offers 
a  SPECIAL  REPORT: 

Recommendations  for  Implementing 
and  Managing  Converged  Networks 

For  a  limited  time,  you  can  get  a  copy  of  this 
SPECIAL  REPORT  in  PDF  format,  free. 

Just  download  your  copy  at: 

www.nwfusion.com/go/netsrad  (registration  required) 
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OS  bypass  eliminates  overhead 


HOW  IT  WORKS 


Operating  system  bypass 

With  operating  system  bypass,  the  iWarp  adapter 
directly  executes  I/O  commands  without  operating 
system  involvement.  This  reduces  CPU  overhead. 
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O  User  applications  post  read  and  write  requests  through  the  I/O  library. 

©  The  I/O  library  translates  the  requests  into  I/O  commands  understood  by  the  iWarp  adapter  and  delivers  the 
commands  directly  to  the  adapter,  bypassing  the  operating  system  and  avoiding  the  context  switch. 

©  The  iWarp  adapter  provides  inter-process  security,  guarantees  fair  application  access  to  the  resources  and 
performs  the  I/O  commands. 


■  BY  KRIS  MEIER 

The  demand  for  higher-speed  server  in¬ 
terconnects  to  support  clustering,  storage 
networks  and  bulk  data  movement  con¬ 
tinues  to  drive  Ethernet’s  evolution.  In  tran¬ 
sitioning  from  1G  to  10G  bit/sec  data  rates, 
Ethernet  is  poised  to  handle  the  most 
demanding  data  center  applications  in 
these  three  areas. 

However,  taking  full  advantage  of  this 
tenfold  increase  in  performance  requires 
the  elimination  of  the  three  elements  of 
host  CPU  overhead  related  to  networking: 
buffer  copies,  transport  processing  and 
application  context  switches.  Recognizing 
the  host  CPU  overhead  problem,  the 
RDMA  Consortium  and  IETF  have  devel¬ 
oped  a  set  of  standard  extensions  to 
Ethernet  and  TCP/IP  that  eliminate  all 
three  sources  of  overhead.  Collectively, 
these  specifications  are  called  iWarp. 

While  Remote  Direct  Memory  Access 
(RDMA)  and  Transport  Offload  Engines 
have  made  great  strides  in  reducing  over¬ 
head,  a  full  40%  of  network  overhead  is 
attributed  to  application  context  switches. 
Context  switches  occur  when  process 
execution  moves  from  user  space  to  ker¬ 
nel  space.  Of  the  three  sources  of  net¬ 
work  overhead,  context  switches  have 
been  discussed  the  least  and  warrant 
further  consideration. 

A  change  in  context 

Simply  put,  user  space  is  where  all  user 
programs  execute.  Historically,  applica¬ 
tions  operating  in  user  space  make  system 
calls  into  the  kernel  for  privileged  opera¬ 
tions  such  as  I/O  commands  to  network 
or  storage  devices. 

Kernel  space  is  where  the  operating  sys¬ 


tem,  device  drivers  and  hardware  inter¬ 
rupt  handlers  run.  The  kernel  provides  a 
safe  interface  to  hardware,  provides  inter¬ 
process  security,  gives  different  processes 
a  fair  share  of  the  resources,  and  arbitrates 
access  to  resources/hardware. 

Transitions  from  user  to  kernel  space 
(and  the  reverse)  historically  have  been 
required  to  pass  data  between  user  pro¬ 
grams  and  their  clustering,  storage  and 
networking  hardware  resource.  Each  tran¬ 
sition  requires  saving  the  user  process 
context  data  and  loading  the  kernel  con¬ 
text  data.  The  act  of  saving  the  user  proc¬ 
ess  information  and  loading  the  kernel 


process  information  is  known  as  a  con¬ 
text  switch. 

Typically,  a  context  switch  involves  sav¬ 
ing  the  address  space  and  software  stack 
information,  and  the  register  set  (pro¬ 
gram  counter,  stack  pointer,  instruction 
register  and  other  general  processor  reg¬ 
isters)  from  the  current  process  and  load¬ 
ing  the  corresponding  information  for 
the  new  process.  With  this  information, 
the  CPU  begins  execution  of  the  kernel 
process,  using  the  restored  registers  and 
address  space. 

The  overhead  of  saving  and  restoring 
context  information  limits  application  I/O 


performance.  As  mentioned  before,  in  the 
case  of  TCP/IP  user-to-kernel  transition,  it 
can  account  for  approximately  40%  of  the 
host  CPU  networking  overhead. 

The  technique  for  eliminating  the  user- 
to-kernel  transition  and  its  associated  con¬ 
text  switch  is  known  as  operating  system 
bypass.  As  shown  in  the  graphic,  operating 
system  calls  are  avoided  by  updating  the 
I/O  library  to  take  advantage  of  operating 
system  bypass  capabilities.  This  modifica¬ 
tion  is  transparent  to  applications  and  en¬ 
ables  direct  communication  of  all  com¬ 
mands  to  the  I/O  adapter,  eliminating  the 
user-to-kernel  transition.  Operating  system 
bypass  is  a  well-proven  technique  that  has 
been  used  for  years  in  the  highest-perfor- 
mance  cluster  interconnects. 

The  iWarp  specification  lets  an  iWarp- 
compliant  Ethernet  channel  adapter 
transparently  replace  Ethernet  network  in¬ 
terface  cards  because  ECAs  are  com¬ 
pletely  compatible  with  today’s  Ethernet 
infrastructure  —  cables,  switches/routers 
and  applications.  IWarp  also  defines  a 
new  interface  that  enables  application 
software  to  communicate  directly  with  an 
ECA.  This  provides  additional  benefits  to 
applications  demanding  the  highest  levels 
of  performance. 

To  fully  eliminate  host  CPU  overhead,  an 
iWarp  ECA  must  support  RDMA,  TCP 
offload  and  operating  system  bypass. 
Anything  less  will  consume  CPU  re¬ 
sources  as  network  load  increases  and  is 
not  a  complete  implementation  of  the 
iWarp  specifications. 

Meier  is  product  manager  for  NetEf feet's 
line  of  iWarp  Ethernet  channel  adapters. 
He  can  be  reached  at  kmeier@neteffect. 
com. 


Dr.  Internet 


By  Steve  Blass 


We  want  to  cluster  two  of  our  Red  Hat  AS  2.1  Web 
servers  and  configure  the  disk  array  so  it  can  be 
shared  between  the  servers  (so  both  can  see  the 
same  drives  at  the  same  time).  Where  can  we  get 
more  details  about  clustering? 

Check  the  Red  Hat  Cluster  Suite  home  page 
(www.nwfusion.com,  DocFinder:  5628).  The  suite  is 
available  for  Enterprise  Linux  Version  3  as  an 
annual  subscription  service,  and  can  provide  high- 


availability  failover  capabilities  and  IP  load  balanc¬ 
ing.  it  is  based  on  the  Kimberlite  open  source  clus¬ 
tering  system  (DocFinder:  5629).  High-availability 
services  can  be  run  on  only  one  cluster  member 
server  at  a  time,  but  you  can  run  separate  ser¬ 
vices  on  each  cluster  member  while  sharing  visibil¬ 
ity  into  the  same  disk  array  if  you  use  a  dual-con¬ 
troller  hardware  RAID  disk  array.  Each  member  in 
a  two-member  cluster  periodically  writes  time 
stamp  and  cluster-state  information  to  two  shared 


cluster  partitions  located  on  shared  disk  storage. 

If  a  member  cannot  write  to  both  the  primary  and 
shadow  shared  cluster  partitions  at  start  up,  it 
can't  join  the  cluster.  Also,  if  a  member  doesn't 
update  its  time  stamp  and  heartbeats  to  the  sys¬ 
tem  fail,  it  is  removed  from  the  cluster. 

Blass  is  a  network  architect  at  Change@Work  in 
Houston.  He  can  be  reached  at  dr.internet@ 
changeatwork.  com. 
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Linux  goes  from  small  to  tiny 


GEARHEAD 

INSIDE  THE 
NETWORK 
MACHINE 

Mark 

Gibbs 


Having  delivered  a  surfeit  of  joy 
with  our  two-week  Linux  spin,  we 
have  only  one  choice:  EML  (Even 
More  Linux). 

Last  week  we  were  talking  about  Damn 
Small  Linux,  but  before  we  continue  on 
with  that  we  need  to  mention  a  few  other 
items.  First,  you  will  remember  from  two 
weeks  ago  that  the  standard  configuration 
of  coLinux  features  a  Debian  distribution. 
This  is  all  well  and  good  but  may  not  be 
everyone’s  cup  of  Un*x. Should  you  have  a 
raging  desire  to  run  another  distribution, 
you  will  need  to  create  a  root  image  of 
your  target  system. 

Creating  a  root  image  is  reasonably  com¬ 
plicated  and  arcane  enough  —  see 
www.nwfusion.com,  DocFinder:  5632  — 
that  we  will  leave  it  as  an  exercise  for  the 
ambitious  reader.  If  you  do  create  a 
runnable  root  image  please  let  us  know, 
give  us  access  to  a  copy  and  we  will  make 
it  available  to  other  readers  and  send  you 
an  official  Gearhead  something  or  other. 


Another  issue  that  came  up  with  coLinux 
was  raised  by  reader  Steve  Sullam:“I  got  as 
far  as  being  able  to  ping  addresses  on  the 
Internet  using  the  tap  connection  with  the 
Debian  image,  but  somehow  it  won’t 
resolve  names  to  addresses  on  the  Internet. 
I  have  tried  editing  the  resolvconf  file, 
adding  some  good  name  servers  and 
putting  bind  in  front  of  hosts  in  host.conf. 
Maybe  you  have  some  ideas.” 

Steve,  it  turns  out  the  heart  of  the  problem 
is  when  the  TAP  driver  under  Windows 
coLinux  is  routing  packets  to  and  from  the 
host  driver.  Because  it  cannot  read  the 
host’s  TCP/IP  configuration,  the  IP  configu¬ 
ration  data  for  the  hosted  Linux  system  is 
incomplete. 

You  can  define  this  data  statically  or 
reconfigure  the  coLinux  distro  to  use  net¬ 
work  address  translation  or  a  bridged  con¬ 
nection.  This  is,  unfortunately,  yet  another 
topic  fraught  with  strange  technical  gyra¬ 
tions  that  would  take  too  long  to  explain 
here.  Check  out  the  details  at  DocFinders: 
5633  and  5634  for  the  gruesome  truth. 

DSL 

Anyway  back  to  Damn  Small  Linux.  As  we 
noted,  it  is  a  stripped-down  version  of 
Knoppix,  which  is  itself  already  a  stripped- 
down  version  of  Linux. 


First,  let  us  explain  one  of  the  finer 
points  of  Damn  Small  Linux:  DSL  is  small. 
When  we  say  small  we  don’t  mean  just 
that  it  can  fit  on  a  CD,  we  mean  you  can  fit 
12  copies  on  a  single  CD. Yep,  Damn  Small 
Linux  is  really  really  small  —  as  the  DSL 
home  page  claims:  “50  megabytes  of  pen¬ 
guin  power/  And  because  it  requires  no 
host  kernel  patches  or  drivers  to  run, 
QEMU  (a  freeware  processor  emulator  — 
(details  at  DocFinder:  5635)  is  safe  and 
easy  to  use. 

Being  so  small  also  means  you  can  boot 
DSL  from  a  USB  pen  drive.  In  fact  the  DSL 
site,  wwwdamnsmalllinux.org,  offers  DSL 
pre-installed  on  a  bootable  128M-byte  USB 
2.0  pen  drive  for  a  measly  $47  with  all  earn¬ 
ings  going  into  funding  DSL  development. 

The  DSL  site  describes  the  system  thus- 
ly:  “Damn  Small  Linux  has  a  nearly  com¬ 
plete  desktop,  including  XMMS  (MP3,  and 
MPEG);  FTP  client;  Dillo  Web  browser; 
links-hacked  Web  browser;  spreadsheet; 
Sylpheed  e-mail;  spellcheck  (U.S. 
English);  a  word  processor  (Ted-GTK), 
four  editors  (SciTe,nVi,Zile  [eMac  clone] 
and  Nano  [Pico  clone]);  graphics  editing 
and  viewing  (Xpaint  and  xzgv);  Xpd; 
emelFM  (file  manager);  Naim  (AIM,  ICQ, 
IRC);  VNCviwer;  Rdesktop;  SSH/SCP  serv¬ 
er  and  client;  DHCP  client;  PPP;  PPPoE 
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(ADSL);  a  Web  server;  calculator;  generic 
and  GhostScript  printer  support;  NFS; 
Fluxbox  window  manager;  games;  system 
monitoring  apps;  a  host  of  command-line 
tools;  USB  support;  [PCMCIA  support;  and 
some  wireless  support] .” 

This  is  a  really  amazing  distribution  and, 
as  we  noted,  rather  than  having  DSL  take 
over  the  whole  machine  and  then  the  PC 
requiring  a  reboot  to  get  back  to 
Windows,  there  is  a  version  called  “Em¬ 
bedded  DSL”  that  can  run  alongside  Win¬ 
dows  in  much  the  same  way  that  coLinux 
can.  The  only  drawback  with  Embedded 
DSL  is  that  performance  is  much  slower 
—  slower  even  than  coLinux.  To  get  even 
barely  good  performance  your  PC  will 
have  to  be  running  at  better  than  1GHz. 

Embedded  DSL  requires  QEMU  To  sup¬ 
port  the  Embedded  DSL  version,  QEMU 
runs  in  “full  system  emulation”  mode.  This 
lets  QEMU  emulate  a  full  PC,  including  a 
processor  and  various  peripherals.  Under 
this  environment, you  can  launch  different 
operating  systems  alongside  Windows. 

We’re  interested  in  running  DSL  under 
QEMU  and  that’s  what  we’ll  investigate 
next  week. 

Run  your  thoughts  to  gearhead@gibbs. 
com. 


Quick  takes 
on  high-tech  toys 

By  Keith  Shaw 


Connect  Ethernet  devices  over  802.11a  connection 

Linksys  last  week  launched  a  new  wireless  Ethernet 
adapter  (WGA564AG)  that  gives  wireless  connectivity  to 
Ethernet-enabled  devices  such  as  gaming  consoles,  per¬ 
sonal  video  recorders  or  non-wireless  media  players.  The 
device  adds  an  802.11a  wireless  connection  that  helps 
with  applications  that  need  a  consistent  signal  and  high 
network  throughput  (as  802.1  lb/g  often  can  have  interfer¬ 
ence  issues). 

If  you  have  hooked  up  an  Xbox  to  become  a  Media 
Center  Extender  (an  $80  kit  from  Microsoft  that  lets  you 
stream  content  from  a 
Media  Center  PC  to  an 
Xbox  connected  to  a 
second  TV),  the  new 

Unplugging  the  V-352 
projector  lets  you  pack  up 
quicker  while  still  cooling 
the  unit. 


adapter  assists  in  creating  a  wireless  link  for 
that  configuration.  The  adapter  is  available 
through  resellers  and  other  retailers  for 
$129. 

Pack  up  your  projector  faster 

Plus  Vision  last  week  launched  a  pro¬ 
jector  that  can  cool  its  fan  while  a  pre¬ 
senter  is  packing  up  and  getting 
ready  to  leave. 

A  battery-operated  cool¬ 
ing  fan  on  the  V-332  pro¬ 
jector  is  part  of  the 
Unplug  &  Go  technology,  which  lets 
a  presenter  unplug  the  power  cord  from  the  projector 
to  speed  up  the  process  of  breaking  down  the  system. 
Other  projectors  need  to  stay  plugged  in  to  run  the  cool¬ 
ing  fan,  wasting  valuable  minutes. 

The  V-332  weighs  less  than  three  pounds,  offers  1,200 
lumens  of  brightness  and  has  a  2,000:1  contrast  ratio  for 
color-rich  presentations,  Plus  Vision  says.  The  system  also 
includes  a  dial-type  lens  cover  that  makes  it  easier  to 
remove  and  attach  the  lens  cap. 

Other  features  include  support  for  480p  or  576p 
for  progressive  DVD,  or  720p  or  1080i  for  HDTV;  a 
built-in  presentation  timer  and  a  credit-card- 
sized  remote  control.  The  system  costs  about 
$2,000  and  is  available  at  www.plus- 
america.com. 

Motion  Computing  launches  thin  client  tablet 

Motion  Computing  last  week  launched  a 
mobile  thin  client  tablet  computer,  aimed  at  pro¬ 
viding  software  applications  and  updates  to 
users  while  keeping  the  data 
stored  on  secure  network  servers. 

The  Motion  M1400TC  Tablet 
Client  runs  the  Windows  XP 


Sharp’s  Actius  MC24  includes  a 
curved  ergonomic  keyboard  and  a 
ton  of  storage  space  for  $1,100. 

Embedded  operating  system  and 
includes  the  Microsoft  Remote 
Desktop  Protocol,  Citrix  ICA  Client 
and  Internet  Explorer  with  Sun’s 
Java  Runtime  Environment.  The 
M1400TC  uses  the  same  slate-tablet 
PC  chassis  as  the  M1400,  but  with¬ 
out  a  hard  drive  (the  TC  uses  512M 
bytes  of  solid-state  flash  storage  for  the 
operating  system  and  essential  applica¬ 
tions).  Other  features  include  a  wide  viewing 
angle  display  and  an  integrated  fingerprint  reader  for 
additional  security.  The  tablets  are  geared  toward  health¬ 
care,  retail  and  manufacturing  sectors,  the  company  says. 

The  systems  start  at  about  $1,700  and  are  shipping  now. 

Sharp  launches  sub-$1,80G  notebook 

Sharp  Systems  of  America  last  week  announced  the 
availability  of  its  new  Actius  MC24  notebook,  which 
includes  60G  bytes  of  storage  space  and  an  ergonomic 
curved  keyboard  for  more  comfortable  typing.  The  note¬ 
book  costs  $1,000  and  is  available  through  Sharp’s  Web 
site  (see  www.nwfusion.com,  DocFinder:  5631)  and  other 
resellers. 

The  Actius  MC24  includes  the  AMD  Athlon  XP-M  2400+ 
processor  and  PowerNow  Technology  for  extending  bat¬ 
tery  life,  Sharp  says.  It  comes  standard  with  512M  bytes  of 
memory  (up  to  768M  bytes  maximum),  integrated 
802.1  lb/g  wireless  LAN  connectivity,  a  CD-R/RW/DVD 
combination  drive,  four  USB  2.0  ports,  a  VGA  port  and  PC 
Card  (Type  II)  slot.The  system  has  a  12.1-inch  LCD  screen 
and  comes  with  Windows  XP  Home  Edition. 

Shaw  can  be  reached  at  kshaw@nww.com. 
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ON  TECHNOLOGY 

John  Dix 

At  last 

Bernie's  day 
in  court 

The  federal  fraud  trial  of  former  WorldCom  CEO 
Bernard  Ebbers  kicked  off  last  week  in  U.S.  District 
Court  in  New  York,  with  the  telecom  community 
watching  to  see  if  the  sins  that  resulted  in  the  unraveling 
of  the  company  will  be  laid  at  his  doorstep. 

On  the  one  hand,  it  is  possible  to  believe  Ebbers,  64, 
didn’t  understand  the  accounting  shenanigans  behind 
the  $1 1  billion  fraud  that  resulted  in  WorldCom’s  bank¬ 
ruptcy  in  2002.  He  was  a  former  high  school  coach  and 
motel  owner  who  became  a  telecom  tycoon  thanks  to  a 
vision  for  growth  based  on  acquisition. 

He  began  by  starting  a  small  long-distance  resale  com¬ 
pany  called  Long  Distance  Discount  Service  in  1983  and 
then  grew  it  by  buying  other  small  telecom  shops  and 
bolting  them  on. The  formula  was  simple:  Grow  the  top 
line  via  acquisition  and  then  leverage  that  to  buy  more. 
By  some  counts,  he  bought  some  70  companies. 

Ebbers  graduated  to  the  telecom  major  leagues  in  the 
mid-1990s  with  a  string  of  deals,  acquiring  1DB  WorldCom 
for  its  global  reach  in  1994,  then  scooping  up  WilTel 
Network  Service  for  $2.5  billion  in  1995  and  merging  with 
MFS  Communications  in  1996  (MFS  had  earlier  acquired 
the  largest  national  ISRUUNETj.He  vaulted  into  second 
place  in  the  majors  in  1998  when  he  completed  the  $37 
billion  merger  with  MCI.  (In  1999  WorldCom  made  a  run 
at  Sprint,  but  the  deal  was  shot  down  on  anti-trust 
grounds.) 

At  its  peak  in  1999,  WorldCom’s  stock  was  trading  in  the 
$90s.  But  then  the  telecom  market  downturn  started  to 
rattle  what  turned  out  to  be  a  house  of  cards. 

By  early  2002,  Ebbers  was  fighting  desperately  to  keep  it 
all  afloat.  Forbes  reported  in  February  that  year:  “The 
rumors  that  have  battered  WorldCom’s  stock  over  the  past 
week  or  so  have  ‘truly  been  unbelievable,’  Ebbers  said. To 
question  WorldCom’s  viability  is  utter  nonsense.’” 

He  resigned  two  months  later,  and  by  June  the  stock 
was  trading  for  less  than  50  cents. 

The  defense  will  argue  that  through  all  of  this  Ebbers 
was  good  at  deal  making  but  bad  at  the  business 
mechanics  —  which  were  all  the  more  messy  because  of 
the  rampant  deal  making  —  and  he  was  misled  by  subor¬ 
dinates  who  simply  wanted  to  keep  him  happy 
But  that  is  frankly  hard  to  believe.  One  would  think  (or 
hope)  it  would  be  hard  to  hide  $1 1  billion,  even  from  the 
most  out-of-touch  CEO.  And  it  doesn’t  look  good  that  the 
prosecution  has  guilty  pleas  from  five  of  his  reports,  some 
of  whom  have  agreed  to  testify  against  him. 

One  thing  is  clear  The  unfolding  story  will  be  fascinating. 


Not  here  yet 

The  story  “The  future  is  wireless,  VoIP”  (wwwnwfu 
sion.com,  DocFinder:  5622)  implies  that  British 
Telecom’s  “BluePhone”  service  already  has  been 
rolled  out  in  the  U.K.  BluePhone  is  projected  to  be 
launched  next  year. 

For  years  I  have  forwarded  my  home  phone  num¬ 
ber  to  my  cell  phone  so  that  I’m  reachable  when  I 
want  to  be.  With  Cingular  offering  a  dock  for  a  cell 
phone  that  will  ring  the  home  landline  phone  and 
Sprint  PCS’  test  marketing  a  similar  device  from 
Telular,  I  think  the  promise  of  many  aspects  of 
BluePhone  is  here.  (Many  in  the  U.S.  use  their 
mobile  phones  for  the  free  long-distance,  totally 
abandoning  their  landlines  for  long-distance 
calls.) 

The  Telular  and  Cingular  devices  let  us  use  the 
hardwired  phones  in  our  houses,  most  often  conve¬ 
niently  distributed  throughout  our  domiciles,  so  that 
we  won’t  have  to  carry  our  cell  phones  around.  For 
those  who  don’t  like  to  carry  their  mobile  phones 
around  all  the  time,  and  for  those  concerned  about 
mobile  phone  radiation,  these  sorts  of  devices  fill 
the  need. 

Craig  Paul 
Lawrence,  Kan. 

Catchy  lyrics 

Regarding  Mark  Gibbs’  high-tech  lyrics  to  “Jingle 
Bells”  in  his  Gearhead  column  “The  beauty  of 
Ruby”  (DocFinder:  5623):  Five  years  ago,  someone 
in  my  local  Linux  Users  Group  observed  that 
“Jingle  Bells”  sounds  a  lot  like  “GPL”  (Gee  Pee  Ell). 
My  son  and  I  fiddled  with  the  idea  a  bit  and  came 
up  with: 

Gee  Pee  Ell,  Gee  Pee  Ell,  Gee  Pee  Ell’s  the  way. 

E-mail  letters  to  jdix@nww.com  or  send  them  to  John  Dix,  editor  in 
chief,  Network  World,  1 1 8  Turnpike  Road,  Southborough,  MA  01772. 
Please  include  phone  number  and  address  for  uerification. 
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Oh,  what  fun  it  is  to  code  and  glue  your  source 
away.  Hey! 

Gee  Pee  Ell,  Gee  Pee  Ell,  Gee  Pee  Ell,  hooray! 

Coding  is  such  fun  that  we  don't  need  no  stinkin' 
pay. 

Unfortunately,  1  doubt  the  Free  Software 
Foundation  would  have  been  tempted  to  release  it 
as  a  companion  piece  to  “The  Free  Software  Song” 
(details  at  DocFinder:  5638)  in  any  case. 

Ray  Olszewski 
Palo  Alto,  Calif. 

Explosive  combination 

In  his  BackSpin  column  “Divine  divination”  (Doc¬ 
Finder:  5624),  Mark  Gibbs  mentions  molybdoman- 
cy,  the  process  of  predicting  the  future  from  the 
shapes  created  by  dripping  molten  lead  into  cold 
water.  Years  ago  I  worked  in  a  refinery  One  of  the 
things  we  refined  was  scrap  solder  from  automated 
machines  that  produced  circuit  boards.  We  would 
melt  it  in  a  large  cauldron  and  then  skim  off  the 
garbage  that  came  up  to  the  top.  The  material  was 
then  poured  into  bars  and  sold  to  companies  that 
made  solder. 

Before  doing  this  for  the  first  time,  I  was  warned 
to  never  let  any  water  get  in  there  because  the  lead 
would  explode.  Gibbs’  comment  got  me  wondering 
if  dropping  molten  lead  into  water  would  cause  the 
same  result?  A  little  research  has  shown  that  the 
molten  lead  does  not  explode.  What  happens  is  the 
water  goes  below  the  surface  of  the  molten  lead 
and  quickly  turns  to  steam.  It  is  the  action  of  the 
water-to-steam  transformation  that  causes  the 
explosion-like  effect.  So  bottom  line,  it’s  safe  to  say 
that  dropping  a  little  molten  lead  into  a  pool  of 
cold  water  will  not  have  a  violent  effect. 

David  Michel 
Senior  tech  support  specialist 
Computer  Associates 
Islandia,  N.Y 


More  online!  www.nwfusion.com  Find  out  what  readers  are  saying  about  these  and  other  topics.  DocFinder:  5621 


—  John  Dix 
Editor  in  chief 
jdix@nww.com 
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DEMO  INSIGHTS 

Chris  Shipley 


Tech  trends  evoke  optimism 


lechnology  watchers  know  the  Demo 
Conference  as  a  showplace  of  the  very 
best  new  enterprise  and  consumer 
technologies.  Astute  observers  also  know 
Demo  to  be  a  leading  indicator  of  key  trends 
that  will  shape  the  year  ahead.  The  process 
of  screening  hundreds  of 
companies  in  order  to  select  the  75  best  reveals 
volumes  about  the  state  of  the  technology  indus¬ 
try.  (For  information  about  Demo@15!,to  be  held 
Feb.  13-15  in  Scottsdale,  Ariz.,  see  www.demo. 
com/demo2/.) 

So,  what  are  we  going  to  see  in  2005? 

For  certain,  we  will  see  many  hard-fought  technologies  go  main¬ 
stream  in  2005.For  nearly  10  years, we’ve  seen  steady  progress  in  VoIP 
technologies,  for  example.  This  year,  IP  telephony  becomes  almost 
common,  not  just  in  enterprise  telephony  systems  but  also  in  con¬ 
sumer  applications.  By  year-end,  Skype  will  become  a  verb,  as  in  “I’ll 
Skype  you  at  9  tomorrow  so  that  we  can  discuss  the  matter’’ 

Service-based  computing  also  will  hit  a  tipping  point,  as  enterprise 
computing  organizations  find  increasing  benefits  in  a  hybrid  model 
that  mixes  in-house  IT  operations  with  outsourced  application  man¬ 
agement  and  as  small  firms  gain  big-company  advantages  by  tap¬ 
ping  service-based  offerings. 

Security  will  be  reprised  this  year,  but  will  take  on  a  new  note.  A  del¬ 
uge  of  regulation  —  from  the  Sarbanes-Oxley  Act  to  internal  HR 
mandates  —  have  IT  organizations  looking  to  leverage  technology  to 


DEMO@15! 

FEBRUARY  13-15  I  SCOTTSDALE,  ARIZONA 


ensure  compliance.  Security  vendors  are  jumping  on  this  marketing 
bandwagon  and  will  use  the  compliance  angle  to  repackage  an 
array  of  products. 

Even  in  these  early  days  of  2005,  it  is  clear  that  venture  capital  is 
returning  to  the  table.  In  fact,  2005  is  destined  to  be  the  biggest  year 
for  venture  capital  invested  since  the  boom  and  by  a  large  margin. 

There  is  money  to  be  put  to  work  and  great 
opportunities  to  make  that  work  pay  off.  For  the 
first  time  in  my  nine-year  history  with  Demo, 
more  than  half  the  companies  that  will  take  part 
in  the  February  conference  were  funded  by  as 
one  company  put  it,  “3F:  founders,  friends  and 
family’  As  market  segments  mature,  we’ll  see  a  consolidation  of  tech¬ 
nologies,  either  as  large  companies  acquire  missing  pieces  to  their 
product  strategies  or  as  smaller  companies  band  together  to  com¬ 
pete  on  a  larger  scale.  I’m  keeping  my  eye  on  the  anti-spam  technol¬ 
ogy  providers  and  security  products  companies  as  two  areas  ripe  for 
rapid  consolidation  in  the  first  half  of  2005. 

It  is  typical,  at  the  start  of  each  year,  to  send  greetings  wishing 
health,  happiness  and  prosperity  in  the  new  year.  For  the  first  time  in 
a  few  years,  it  feels  right  to  extend  that  wish  with  a  sense  of  optimism 
and,  dare  I  say  it,  certainty 

Shipley  is  executive  producer  of  the  Demo  Conferences,  a  biannual 
Network  World  owned  event  that  launches  and  showcases  the  newest 
emerging  technology  products  and  services.  She  can  be  reached  at 
chris@demo.com. 


We'll  see  many 
hard-fought 
technologies  go 
mainstream  in 
2005. 


ON  SECURITY 

Winn  Schwartau 


Different  vendors,  better  security 


icrosoft  is  getting  into  the  security 
game.  Some  folks  say“It’s  about  time.” 
Others  say  “Haven’t  they  had  security 
for  years?”  I  look  it  at  it  quite  differently 
The  facts:  Microsoft  acquired  the  anti-virus 
company  GeCAD  in  2003  and  recently  ac¬ 
quired  anti-spyware  maker  Giant  Company 
Software.  Microsoft  obviously  plans  to  compete  with  Symantec,  Net¬ 
work  Associates  and  other  companies  that  have  made  billions  of  dol¬ 
lars  protecting  users  from  the  security  holes  in  Microsoft  products. 

Now  what’s  wrong  with  this  picture?  I  firmly  believe  in  homogenized 
milk,  but  not  a  homogenized  network  or  computer  system. 

Imagine  this  scenario,  MicroHome,  a  do-it-yourself  construction  com¬ 
pany  builds  a  nice,  simple  shell  for  a  house  that  lets  people  build  effec¬ 
tive,  usable  homes  for  themselves.  MicroHome  becomes  enormously 
successful.  Then  other  companies  begin  to  offer  materials  such  as  tile 
roofs,  better  carpeting,  lead-free  paints,  aluminum  exteriors,  upgraded 
appliances  and  so  on.  MicroHome  wants  a  piece  of  that  action,  too,  so 
it  adds  various  enhancements  to  each  new  version  of  its  products. 

One  dayNovaHome.a  Utah  company  notices  that  the  only  way  to  get 
from  one  MicroHome  to  the  next  is  to  fill  a  little  floppy  basket  with 
goodies,  put  on  a  pair  of  sneakers  and  march  down  a  winding  path 
through  the  woods  until  you  get  to  the  next  MicroHome.  So  NovaHome 
builds  Inter-Home  Express  (IHX),  a  high-speed  road  system  that  lets 
every  MicroHome  attach  an  on-ramp/off-ramp.  Now  all  the  people  can 
visit  each  other’s  homes  easily 

However,  some  bad  kids  in  one  neighborhood  notice  that 
MicroHome  didn’t  build  locks  into  the  doors  and  windows  of  its  off-the- 
shelf  houses.  As  a  result,  they  can  leap  onto  NovaHome’s  IHX  and  get 
into  anyone’s  house  they  want. 

Companies  start  to  provide  locks  and  keys  for  the  MicroHomes. 
Eventually  MicroHome  gets  the  hint  and  decides  to  add  locks  and  keys 
to  the  houses  it  sells.  However,  MicroHome  builds  the  lock-and-key  sys¬ 


tems  in  such  a  way  that  if  a  kid  breaks  into  one  MicroHome,  he  and  his 
friends  can  break  into  any  MicroHome. 

Here’s  another  scenario.  Imagine  you  own  a  large,  multinational  com¬ 
pany  Every  door,  window,  desk,  filing  cabinet,  garage  and  delivery  truck 
in  your  facilities  has  a  lock  and  key.  Would  you,  as  a  responsible  corpo¬ 
rate  leader,  use  the  same  locks,  made  by  the  same  company,  using  the 
same  keying  system,  for  everything  of  value  in  your  company? 

We  know  that  suites  of  products  from  one  vendor  are  more  vulnera¬ 
ble  than  those  that  are  combined  from  different  vendors.  Why  with  a 
single  iota  of  common  sense,  would  I  add  to  my  potential  vulnerability 
by  relying  upon  more  homogeneity  in  mission-critical  situations? 

At  the  end  of  the  day  I  don’t  care  if  the  new  Microsoft  security  prod¬ 
ucts  outshine  everything  else  by  five  orders  of  magnitude.  There  are 
three  problems  that  are  far  more  fundamental: 

•  Homogeneity  in  security  is  a  recipe  for  disaster.  One  fundamental 
flaw  in  a  critical  place  can  break  down  all  security  efforts  instantly  Well- 
managed  heterogeneity  is  the  only  proven  and  effective  approach. 

•  Expecting  any  vendor  to  self-regulate  and  monitor  its  own  short¬ 
comings  in  a  public  forum  is  wishful  thinking  at  best,  and  dereliction  if 
it  comes  down  to  a  legal  proceeding. 

•  Sooner  or  later,  Microsoft’s  security  products  will  be  so  integrated 
into  Windows  that  they  will  be  unable  to  be  turned  off  or  removed,  and 
third-party  products  will  be  uninstallable,  inoperable  and  undoubtedly 
labeled  as  malicious. 

This  is  not  a  slam  at  Microsoft.  This  is  an  indictment  of  those  who 
choose  the  easy  off-the-shelf  answer  to  security  rather  than  spend  the 
time  and  effort  to  achieve  a  realistic  level  of  security  across  their  com¬ 
pany  I  can  guarantee  you  that  the  bricks,  mortar,  trowel  and  roof  of  the 
third  little  pig’s  house  all  were  made  by  different  companies. 

Schwartau  is  a  security  writer,  lecturer  and  president  of  Interpact,  a  secu¬ 
rity  awareness  consulting  firm.  Check  out  his  security  tips  at  http://secu 
rityawareness.  blogspot.  com. 
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easy,  off-the- 
shelf  answer  to 
security. 
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hether  it’s  taking  the  lead  in  regulatory  compliance, 

becoming  more  involved  with  business  units  or  rolling  out  key  technolo¬ 
gies  like  VoIP,  IT  is  taking  on  a  higher-profile  in  most  companies. 

And  the  IT  organization  is  evolving  to  reflect  this  new  reality;  restruc¬ 
turing  is  occurring,  and  new  positions  are  being  created. 

“The  big  monolithic  shared  service  organization  is  dead,”  says  Trevor 
Gee,  principal  at  Deloitte  Consulting  in  New  York.  “The  new  trend  is  to 
align  IT  teams  with  a  company’s  businesses  so  they  can  make  smarter 
decisions." 

Under  Gee’s  scenario,  planning,  analysis  and  design,  application  devel¬ 
opment,  maintenance,  technical  support,  outsourcing  and  desktop  infra¬ 
structure  might  fall  under  an  individual  line  of  business. 

On  the  other  hand,  core  infrastructure,  such  as  networks  and  data  cen¬ 
ters.  seci  ity  and  controls,  core  vendor  management,  and  company¬ 
wide  infrastructure  standards  would  all  remain  centralized. 

0  n  College  in  Needham,  Mass.,  is  an  example  of  an  IT  department 
evolving  to  take  n  a  more  strategic  role.  In  2002,  when  the  school 
was  founded,  CIO  .loanne  Kossuth  divided  her  IT  department  into 
two  main  groups: 

•  Network  and  technical  services,  which  includes  the  help  desk  and 


operating  system  support. 

•  IT,  which  focuses  on  applications  development  and  IK  I’  systems. 

Then  she  created  the  position  of  customer  service  manager  to  work  on 
improving  relationships  with  the  college  s  students,  faculty  and  staff. 

Kossuth  rolled  out  a  VoIP  system  and  employs  Web  services  so  that  her 
staff  doesn't  have  to  waste,  time  on  “mundane  tasks  '  such  as  adds, 
moves  and  changes.  She  uses  automation  tools  to  add  and  remove 
servers  as  needed.  “It's  no  longer,  'is  my  server  up  and  running.*  now  the 
focus  is  on,  'do  my  clients  have  access  and  are  they  Up  and  running.* 
she  says. 

Kossuth  says  her  IT  organization  is  set  Up  to  take  on  a  leadership  role 
at  the  college.  In  the  past,  she  says,  “IT  was  seen  as  reactive.  People 
would  hand  you  the  software  and  say,  ‘Install  it.'  ” 

Today,  she  encourages  her  team  to  be  proactive.  “We  do  our  home¬ 
work,  we  monitor  networks,  we  are  involved  in  all  the  decisions,"  she 
says.  "We’ve  matured  as  a  profession." 

One  side  benefit  to  deploying  VoIP  has  been  the  ability  to  apply  the  cus¬ 
tomer  service  skills  of  former  telecom  managers.  Kossuth  says  they  are 
great  at  explaining  feature  sets  of  the  VoIP  system  to  users,  spending  time 
helping  problem  users  come  to  a  resc ilutibn  and  updating  hel|  >  desk  manuals. 


It's  not  just  about  knowing 


have  to  understand  the 
business  and  its  needs. 


— 


Joanne  Kossuth,  CIO 

Olin  College. 
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Kossuth  also  requires  her  team  to  hone 
their  presentation,  interpersonal  and  man¬ 
agement  skills.  “It’s  not  just  about  knowing 
the  latest  programs.You  have  to  understand 
the  business  and  its  needs,”  Kossuth  says. 

New  jobs  emerge 

As  IT  aligns  more  with  business,  project 
management  skills  become  vital. 

Rebecca  Segal,  vice  president  of  World¬ 
wide  Services  Research  at  IDC,says,“IT  is 
no  longer  just  a  support  function.  It’s 
about, ‘Can  you  understand  the  technology 
and  help  people  use  it?’  Companies  want 
people  [in  IT]  who  are  very  interested  in 
helping  the  company  grow  and  be  more 
profitable.” 

She  says  with  the  uptick  in  offshoring,  hav¬ 
ing  business  skills,  specifically  project  man¬ 
agement,  will  be  critical. 

Johna  Till  Johnson,  founder  of  Nemertes 
Research  and  a  Network  World  columnist, 
agrees.The  biggest  trend  in  IT  is  that  there’s 
much  more  of  an  emphasis  on  project 
management  and  delivering  services  than 
on  understanding  and  rolling  out  technol¬ 
ogy  People  need  to  better  understand  the 
lines  of  business,  understand  customers, 
better  manage  suppliers.These  are  all  busi¬ 
ness  functions.” 

For  this  reason,  Johnson  says  she’s  seeing 
the  emergence  of  a  new  position  for  IT  — 
the  project  management  officer  (PMO). 
Johnson  says  the  CTO  of  an  organization 
focuses  on  new  technology  and  the  PMO 
figures  out  how  to  integrate  that  technol¬ 
ogy  into  the  organization.  The  PMO  also 
could  provide  a  home  for  compliance  and 
regulatory  oversight,  a  burden  that  weighs 
heavy  on  most  IT  organizations. 

“They  will  need  to  know  about  process 
and  people  management,”  she  says. 
“These  aren’t  skills  your  IT  manager  has 
had  traditionally. 

Bob  Muckenhoupt,  an  IT  industry  vet¬ 
eran,  is  seeing  this  trend  arise  firsthand.  His 
company’s  Project  Management  Office, 
which  reports  to  a  level  below  the  CIO,  has 
gained  prominence  in  the  organization 
over  the  past  year.“It's  being  strengthened; 
it’s  enforcing  new  processes,”  he  says.  One 
goal  of  the  PMO  is  to  adhere  to  company 
and  regulatory  standards. 

Project  managers,  he  says,  are  responsible 
for  ensuring  that  the  technology  side  of 
mergers  and  acquisitions  goes  smoothly 
and  that  all  other  changes  or  enhance¬ 
ments  to  corporate  systems  are  carried  out 
according  to  company  specifications. 

“Our  job  is  to  make  sure  that  if  an  audit 
team  came  in,  they  would  see  we’ve  ful¬ 
filled  the  mandates  of  the  corporation  and 
that  we  are  compliant  worldwide,”  he  says. 

Muckenhoupt  leads  virtual  teams  of  busi¬ 
ness  analysts,  systems  analysts,  developers, 
technical  specifications  experts,  integrated 
systems  professionals  and  implementation 
gurus  to  carry  out  each  project.  He  acts  as 
a  liaison  between  the  team  and  the  busi¬ 
ness  unit.  It’s  his  job  to  communicate  the 
needs  of  the  business  unit  and  make  sure 
they  are  carried  out. 

“Back  in  the  day,  we  didn’t  need  project 
managers  for  anything,”  says  Tom  Gonzales, 


senior  network  administrator  at  Colorado 
State  Employees  Credit  Union  in  Denver. 
“Now  we  can’t  do  anything  without  them.” 

But  instead  of  assigning  a  specific  project 
management  officer,  his  entire  IT  team 
went  through  project  management  train¬ 
ing.  Gonzales  says  this  has  been  critical  as 
the  company  has  outsourced  some  appli¬ 
cations,  and  his  whole  group  oversees 
those  contracts. 

James  Tate,  associate  director  of  Utilities 
and  Telecommunications  at  Presidio  Trust 
in  San  Francisco,  also  requires  his  team  to 
seek  project  management  skills.  “There  is  a 
need  for  project  management  at  every 
level,”  he  says. “It’s  the  only  way  of  organiz¬ 
ing  and  controlling  IT  projects.”  Otherwise, 


Front-end  alignment 


he  says  objectives  aren’t  met  and  other 
people  can  have  too  much  influence  over 
the  success  of  an  initiative. 

Getting  your  finances  in  order 

IT  groups  are  under  the  gun  to  show  ROI, 
yet  often  they  are  missing  a  critical  post  in 
making  this  happen  —  a  financial  expert 
on  their  management  team. 

“This  position  has  very  little  to  do  with 
technology”  says  Corey  Ferengul,  senior 
vice  president  at  Meta  Group.  “Instead  it 
deals  with  doing  a  financial  analysis  of  IT. 
‘Do  we  really  understand  what  we’re 
spending  and  why?”’ 

Ferengul  says  adding  a  financial  guru  to 
the  IT  organization  could  change  the  way 
technology  teams  operate.  “They  need  to 
get  a  grip  on  finances  and  in  most  cases 
they’ve  already  done  cost-cutting.” 

The  financial  manager  would  take  charge 
of  metrics  for  the  group.  Analysis  tools  for 
application  and  network  performance  and 
aggregated  information  would  flow 
through  this  person.  “He  could  provide 
meaningful  metrics  for  people  outside  of 
technology  roles  [like  the  executive  team] 


and  put  those  metrics  into  context  [to  just¬ 
ify  investments] .” 

Some  IT  groups  already  have  a  financial 
guru  in  their  midst  —  the  CFO.  But 
Nemertes’  Johnson  says  IT  groups  should 
be  doing  their  own  financial  vetting  before 
information  hits  the  CFO’s  desk.  “Strategic 
investments  can  be  compromised  if  the 
CFO  gets  involved  in  the  IT  decision-mak¬ 
ing,”  she  says.  “Their  job  is  to  keep  costs 
down.  IT  needs  to  be  treated  like  a  business 
within  a  business.  You  need  your  own 
accounting  unit.” 

Compliance  manager 

Experts  say  that  IT  organizations  should 
add  a  compliance  manager  to  their  ranks 


because  most  companies  fall  under  Health 
Insurance  Portability  and  Accountability 
Act,  Gramm-Leach-Bliley  Act,  Sarbanes- 
Oxley  Act  or  other  government  mandates. 

Andy  Avila,  IT  and  security  manager  at 
Cooley  Goddard,  a  law  firm  in  San 
Francisco,  has  a  lawyer  on  his  IT  team  to 
handle  compliance  questions.  He  also 
turns  to  a  firm-wide  risk  management  com- 
mittee.“We  draw  on  their  expertise  for  help 
with  these  issues,”  he  says. 

Some  experts  argue  that  the  security  offi¬ 
cer  —  another  new  title  in  IT  groups  — 
should  handle  compliance. 

Wish  list 

For  industry  analysts,  the  list  goes  on 
about  who  should  be  part  of  the  IT 
department. 

Ferengul  says  an  important  area  that 
needs  representation  is  asset  control.  “IT 
organizations  need  to  know  what  they  have 
and  where  it’s  at,"  he  says.  He  considers  this 
role  more  than  just  inventory  control.  “It’s 
the  life-cycle  management,  maintenance 
contract  upkeep  and  more.” 

Johnson  says  she’d  like  to  see  a  messag¬ 


ing  guru  who  would  tackle  not  only  e-mail 
but  also  issues  surrounding  real-time  col¬ 
laboration  and  presence. 

They  agree  that  a  storage  officer  will 
come  about  soon  —  someone  to  deal  with 
privacy  redundancy  and  disaster  recovery 
on  more  than  a  technical  level. 

MBAs  all  around? 

As  more  positions  that  involve  business 
sense  are  added  to  the  corporate  IT  ladder, 
IT  managers  are  noticing  the  change. 

Ferengul  adds, “ITs  growing  up  and  there’s 
nothing  wrong  with  that.  In  the  past,  it’s 
been  a  service  bureau  of  technologists  fol¬ 
lowing  the  lead  of  whomever  is  directing 
them.  Now  it  needs  to  be  more  mature  and 
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run  like  a  business  unit  with  all  the  analysis 
and  all  the  managerial  skill  and  all  the 
vision  expected  of  any  other  business  unit.” 

“Do  I  think  IT  folks  need  business 
degrees?  No.  1  don’t  want  to  see  a  bunch  of 
MBAs  running  routers.  But  they  do  need  to 
understand  beyond  the  speeds  and  feeds. 
They  need  to  know  how  it’s  going  to  affect 
the  business,”  he  says. 

Johnson  sees  the  opportunity  for  IT  a  bit 
differently  “It’s  not  about  IT  getting  smarter 
about  business, ”he  says.  “It’s  about  IT  edu¬ 
cating  users  about  how  to  get  more  out  of 
the  business.  IT  has  to  take  on  a  sales  role 
and  convince  folks  to  buy  into  their  ideas.” 

Gonzales  adds  a  reality  check.“I  hear  a 
lot  about  how  IT  folks  need  to  know  the 
business,  but  all  we  have  time  for  is  day- 
to-day  tasks.  After  all.  with  security  we 
want  to  keep  the  bad  guys  out  and  keep 
everyone  patched.  That  task  won’t 
change  with  a  better  understanding  of 
business  management.” 

Gittlen  is  a  freelance  technology  editor  and 
former  Events  Editor  at  Network  World.  She 
can  he  reached  at  sgittlen@charter.net. 


Joanne  Kossuth,  CIO  of  Olin  College  in  Needham,  Mass.,  had  the  opportunity  to  build  her  IT  department  from  the 
ground  up  because  Olin  is  an  engineering  school  that  opened  its  doors  only  three  years  ago.  She  created  three  main 
IT  groups:  The  customer  service  group  works  on  building  relationships  with  students,  faculty  and  staff;  the  network 
and  technical  services  group  handles  help  desk  and  Windows/Unix  administration;  and  the  application  development 
group  focuses  on  Web  services,  Web  site  design,  ERP  and  other  applications.  The  customer  service  team  is  key  because 
it  works  proactively  to  make  sure  that  technology  is  aligned  with  the  business. 
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you  afford  to  be 
without  email? 


That  s  the  question  organizations  are  asking  as  they 
determine  best  solutions  to  protecting  and  backing 
up  messaging  systems.  Other  concerns  involve  the 
growing  reliance  on  email  beyond  messaging.  Email  is 
no  longer  just  a  communication  tool.  For  many  com¬ 
panies,  it’s  how  they  accept  orders.  In  today's  24/7 
world,  it's  as  if  email  systems  can  never  be  offline. 


According  to  a  2003  study  by  Osterman  Research, 
53%  of  companies  have  experienced  business 
interruption  or  monetary  loss  related  to  email 
downtime.  35%  of  companies  have  lost  email  due 
to  technical  failure. 


■ 


Take  advantage  of  this  free  offer  from  Network  World 
Fusion  and  secure  your  copy  of  Messaging  Protection 
Comes  of  Age.  Read  this  special  report  and  learn 
about  the  options  for  backing-up  which  include: 


tape 

*  synchronous  protection 

*  asynchronous  protection 

*  snapshots 


Maybe  for  your  organization  it's  some  combination  of 
the  above? 


Other  topics  in  this  report  include  the  challenge  of 
regulation  and  weighing  the  costs  between  protec¬ 
tion  and  vulnerability. 

So  how  long  can  you  afford  to  be  without  email? 
Read  this  special  report  and  get  a  clearer  under¬ 
standing  of  this  evolving  issue. 
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Elisabeth  Horwitt  has  25  years'  experience  reporting 
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computer  business  press.  As  senior  editor  at 
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Messaging  protection  comes 
of  age 


Just  download  your  copy  at: 

www.nwfusion.com/go/nsisrad  (registration  required) 


"The  scariest  example  is  when  you  accept 
orders  via  email,  which  we  and  a  lot  of  our  cus¬ 
tomers  do,"  says  Paul  Mayer,  a  product  manag¬ 
er  at  Systems  Integrator  Datalink.  "An  order 
lost  because  your  email's  down  -  that's  an 
obvious  ROI  issue." 


For  a  limited  time,  you  can  get  a  copy  of  this 
SPECIAL  REPORT  in  PDF  format,  free. 
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1  Stealthwatch  has  an  eye  for  the  abnormal 

Network-intrusion 
detection  systems 


■  BY  RODNEY  THAYER,  NETWORK  WORLD  LAB  ALLIANCE 


Lancope’s  intrusion-detection  system  is  an  anomaly  in  more  ways  than  one. 
The  Stealthwatch  M250  Version  4.2  we  tested  —  which  veers  from  popular 
signature-based  IDS  products  with  a  behavior-based  approach  to  spotting 
intruders  called  anomaly  detection  —  can  indeed  spot  attacks,  but  its 
overall  package  could  use  a  bit  more  polish. 


The  anomaly  detection  engine  noticed 
unexpected  network  behavior  very  well 
in  our  tests.  For  almost  every  attack  we 
threw  at  it,  the  Stealthwatch  box  did 
note  that  something  was  askew  with  our 
network  activity  (see  how  we  did  it  at 
www.nwfusion.com,  DocFinder:  5637). 
Unfortunately,  in  most  cases,  the  infor¬ 
mation  the  appliance  presented  com¬ 
prised  extremely  low-level  network 
details,  which  were  difficult  to  correlate 
to  an  exact  attack.  We  also  found  some 
security  implementation  issues  that 
could  leave  the  box  open  to  attack. 

Any  IDS  based  on  anomaly  detection 
monitors  network  traffic  on  an  ongoing 
basis  and  looks  for  patterns.  Patterns  that 
are  normal  do  not  generate  events.  If  the 
IDS  detects  abnormal  traffic  —  such  as 
attempts  to  access  disallowed  ports,  or 
traffic  flowing  in  a  direction  that  is  not 
expected  —  then  it  generates  an  event. 
Other  products  that  offer  anomaly  detec¬ 
tion  include  Enterasys  Networks’  Dragon 


Met  Results 


Stealthwatch  M250  4.2 


Company:  Lancope,  www.lancope.com. 
Cost:  $20,000.  Pros:  Interesting,  effective 
approach  to  attack  detection;  flexible 
options  for  tracking  what  normal  network 
behavior  is  in  order  to  detect  future  traffic 
anomalies.  Cons:  Event  reports  contain 
a  plethora  of  low-level  details  that  are 
difficult  to  correlate  to  actual  attacks; 
physical  security  of  the  device  is  lacking. 


The  breakdown 


Attack  detection  40% 


4.5 


Event  processing  25% 


3.0 


Device  security  15% 


2.0 


User  interface  10% 


3.5 


Installation/documentation  10% 


4.0 


TOTAL  SCORE 


3.6 


Scoring  Key:  5: 1  x<.or>1ion.il;  4:  Very  good;  3: 
Avci'.iijo;  2:  Below  average;  t:  Consistently 
subpiu 


and  Symantec’s  Manhunt. 

The  Stealthwatch  4.2  appliance  is 
based  on  a  Dell  PowerEdge  1650  1U, 
rack-mountable  PC  with  four  Gigabit 
Ethernet  interfaces,  one  of  which  is 
left  open  for  management  via  a 
Transport  Layer  Security-based  Web 
interface.  The  device  connects  to  a 
variety  of  infrastructure  services: 
Syslog,  Network  Time  Protocol,  Whois 
(host  information  lookup)  and  DNS, 
used  to  gather  event  information  and 
time  stamps. 

Lancope  offers  a  central  management 
server  to  control  multiple  Stealthwatch 
devices,  which  we  did  not  test.  Lancope 
says  the  interface  is  different,  but  event¬ 
processing  capabilities  are  the  same  as 
found  in  the  appliance. 

Stealthwatch  uses  behavioral  monitor¬ 
ing  to  directly  generate  alerts  and  to  cal¬ 
culate  one  of  three  indices  —  concern 
index,  threat  index  and  file-sharing  index 
—  which  evaluate  whether  the  traffic  is 
normal  or  abnormal.  These  indexes, 
which  are  only  vaguely  documented  in 
the  manual,  provide  some  level  of  indi¬ 
cation  for  when  a  severe  threat  is  pre¬ 
sent  using  the  concern  index,  when  a 
host  is  being  targeted  by  an  attack  using 
the  threat  index  or  when  machines  with¬ 
in  a  monitored  zone  appear  to  be  per¬ 
forming  inappropriate  file  sharing 
through  some  peer-to-peer  tool  using 
the  file-sharing  index. 

You  have  to  configure  the  Stealth¬ 
watch  appliance  to  be  aware  of  your 
network  policy.  You  set  it  up  with  the 
usual  address  information,  such  as  IP 
address,  subnet  mask  and  services 
addresses  the  GUI  uses. You  then  config¬ 
ure  it  to  detect  attacks  based  on  your 
security  policy  such  as  “only  Port  80 
(HTTpWeb)  and  Fbrt  22  (Secure  Shell) 
traffic  are  allowed  inbound  to  this  serv¬ 
er”  or  “only  traffic  to  syslog  are  allowed 
outbound  from  this  server.”  Lancope 
also  offers  the  concept  of  a  “zone”  — 
indicating  a  group  of  hosts  inside  or  out¬ 
side  your  monitoring  perimeter  —  to 
which  you  can  apply  a  policy. 

In  addition  to  conventional  traffic- 
based  policy  configuration, you  can  run 
it  in  tuning  mode  where  it  detects  your 


Stealthwatch  has  an  anomaly  detection  engine 
that  helps  spot  network  intruders,  but  the  soft¬ 
ware  lacks  in  interpretation  of  attack  events. 


normal  traffic  patterns  and  adjusts  its* 
detection  thresholds  based  on  that  data. 

Interpreting  the  signal 

When  an  attack  occurs,  the  Lancope 
device  flags  events  because  of  policy 
violations  in  the  network  traffic.  It  also 
signals  events  when  one  of  the  three 
indices  goes  above  a  prescribed  level. 

Event  data  is  stored  in  a  local  log  that 
can  be  accessed  by  selecting  daily, 
weekly  or  archival  reports  from  the  man¬ 
agement  GUI.  While  the  device  gener¬ 
ates  a  significant  amount  of  log  data 
internally  only  a  limited  number  of  mes¬ 
sage  types  are  forwarded  to  an  external 
syslog  server.  Because  much  of  the  detail 
in  the  local  log  is  never  sent  to  the  exter¬ 
nal  server,  Lancope’s  manual  describes 
techniques  to  periodically  retrieve  and 
process  the  local  log.  This  dual-log 
scheme  requires  extra  log  analysis. 

While  the  GUI  provides  alerts  and  re¬ 
ports  on  network  problems,  the  device 
by  definition  is  unaware  of  any  specific 
attacks  by  name. Therefore,  events  tend 
to  have  a  lot  of  low-level  detail  that  is 
difficult  to  interpret. 

For  example,  in  our  NMAP  TCP  scan 
from  an  outside  host,  Stealthwatch  sent 
an  alarm  for  port  scanning  that  showed  a 
lot  of  bad  traffic  but  offered  no  clear 
explanation  of  what  actually  was  happen¬ 
ing.  Likewise,  a  Nessus  scan  of  a  host  was 
detected  in  our  tests,  but  the  events  pro¬ 
duced  were  described  as  “high  concern” 
with  alert  details  including  “App_flake”, 
“HI_CI”,  and  “Excess_Clients" —  data  that 
would  be  difficult  to  interpret  in  a  real 
attack  situation. 

Like  any  other  device  in  an  enterprise 
network,  the  IDS  should  be  secured  to  a 
level  that  conforms  to  your  security  pol¬ 


icy.  Stealthwatch  has  glitches  in  its  own 
physical  security. 

For  example,  the  management  inter¬ 
face  uses  a  self-signed  certificate, 
which  could  be  vulnerable  to  man-in- 
the-middle  attacks.  Another  security 
concern  related  to  the  fact  that  the  log 
messages  sent  out  externally  comprise 
a  very  limited  subset  of  the  actual  log 
messages  generated.  A  glaring  example 
is  the  “the  system  has  just  been  started” 
message  is  never  sent  to  the  outside 
world;  it’s  only  reported  internally 
Additionally,  the  documentation  rec¬ 
ommends  placing  the  administrator 
password  in  a  shell  script  to  use  for  log 
file  retrieval.  No  mention  of  the  security 
implication  of  this  is  made  —  storing 
administrator  passwords  in  clear  text  in 
an  operator’s  desktop  machines  is  un¬ 
safe  because  a  compromise  to  the  desk¬ 
top  could  compromise  the  IDS. 

Finally  the  tuning  mode  is  documented 
as  providing  dynamic  changes  to  the 
thresholds  for  the  three  indexes.This  im¬ 
plies  an  extremely  low-frequency  attack 
might  get  by  because  instead  of  trigger¬ 
ing  an  event,  it  might  just  tickle  the  auto¬ 
matic  tuning  adjustment  mechanism  to 
keep  increasing  its  thresholds. 

While  the  overall  packaging  could  be 
improved,  Stealthwatch  does  imple¬ 
ment  anomaly  detection  successfully 
With  appropriate  safeguards  in  place 
and  when  used  by  skilled  personnel, 
this  would  be  valuable  component  of 
an  enterprise  network’s  defenses. 

Thayer  is  a  private  network  security 
consultant  in  Mountain  View,  Calif.  He  can 
be  reached  at  rodney@canola-jones. 
com. 


Thayer  also  is  a  member  of  the  Network  World 
Lab  Alliance,  a  cooperative  of  the  premier 
testers  in  the  network  industry,  each  bringing 
to  bear  years  of  practical  experience  on  every 
test.  For  more  Lab  Alliance  information,  includ¬ 
ing  what  it  takes  to  become  a  partner,  go  to 
www.nwfusion.com/alliance. 
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■  CAREER  DEVELOPMENT 

■  PROJECT  MANAGEMENT 

■  BUSINESS  JUSTIFICATION 


CSIRT  groups  take  on  new  roles 

Creating  and  sustaining  a  computer  security  incident  response  team  calls  for  ample  preparation. 


■  BY  PAUL  ROBERTS 

Traditionally,  computer  security  incident  response 
teams  are  thought  of  as  a  way  for  large  organiza¬ 
tions  to  respond  to  hacking  incidents,  rogue 
employees  or  virus  outbreaks.  Now  they  are  com¬ 
ing  into  the  mainstream  as  a  critical  tool  for 
maintaining  business  operations  and  regulatory 
compliance. 

“We’re  definitely  seeing  an  increase  in  the  number  of  [CSIRTs] 
being  formed,”  says  Georgia  Killcrece,  leader  of  the  CSIRT  develop¬ 
ment  team  at  the  CERT  Coordination  Center  at  Carnegie  Mellon 
University  In  many  cases,  companies  are  being  driven  to  create 
CSIRTs  by  mandates  from  Washington,  industry  groups  and  the 
upper  reaches  of  corporate  management,  she  says. 

New  requirements  in  laws  such  as  the  Sarbanes-Oxley  Act,  the 
Health  Insurance  Portability  and  Accountability  Act,  and  California 
State  Law  SB  1386,  hold  companies  accountable  for  the  handling 
and  whereabouts  of  sensitive  data,  and  respond  appropriately  to 
any  breaches  of  customer  or  employee  privacy 

At  their  best,  CSIRTs  let  companies  react  in  a  consistent  and  coor¬ 
dinated  way  to  events  that  affect  IT  systems.“Companies  don’t  want 
to  have  to  reinvent  the  wheel  each  time  an  incident  occurs.  They 
want  to  know  what  to  do,  gather  the  right  information  and  pull  the 
right  people  together’’  Killcrece  says. 

Put  together  a  plan 

To  create  an  incident  response  team,  start  by  getting  the  proper  par¬ 
ticipants  together.  Business  managers,  network  and  desktop  admin¬ 
istrators,  and  IT  security  experts  have  to  be  involved,  Killcrece  says. 
Legal  staff,  human  resources  representatives  and  senior  executives 
who  make  funding  decisions  also  should  participate  in  the  planning. 

When  drafting  your  CSIRT  plan, start  with  the  basics,  recommends 
Adam  Hansen,  manager  of  security  at  Sonnenschein,  Nath  & 
Rosenthal,  a  law  firm  in  Chicago.  “Define  things  like  ‘What’s  an 
incident?’  [or]  ‘What’s  a  response?”’  he  says. 

Companies  also  need  to  identify  the  scope  of  a  CSIRT’s 
responsibilities,  says  Troy  Smith,  senior  vice  president  at 
Marsh  Risk  Consulting.  “You  have  to  look  at  the  core 
software  applications  that  you  need  to  sustain  your¬ 
selves.  If  you  have  one  set  of  systems  that  are  really  crit¬ 
ical,  the  scope  [of  the  CSIRT]  could  be  narrow.  If  you’re 
an  organization  that’s  very  dependent  on  technology,  it 
could  be  very  broad,"  he  says. 

Howard  Schmidt,  former  White  House  cybersecurity 
adviser  and  the  current  chief  security  officer  at  online 
auction  site  eBay,  recommends  a  holistic  approach  to 
creating  CSIRTs. 

“A  lot  of  time  the  focus  is  on  looking  at  one  piece  of 


the  network  —  [intrusion-detection  systems]  or  responding  to 
viruses.  People  get  tunnel  vision  about  where  the  problem  is  based 
on  what  happened  last  week,”  Schmidt  says. 

Hansen  agrees.“If  a  breach  of  security  is  identified  by  IDS,  you’re 
going  to  need  to  work  with  other  groups  —  the  workstation  group, 
the  server  group,”  he  says. 

At  the  same  time,  CSIRT  plans  shouldn’t  be  too  prescriptive.  The 
team  must  be  able  to  grasp  the  big  picture  and  be  open  ended 
when  necessary  experts  say 

“I  used  to  be  adamant  about  having  names  in  slots,  and  I  was  one 
of  a  couple  of  people  who  were  on  the  spot  if  something  went 
wrong,”  Hansen  says.Then  I  thought  ‘I  really  like  hiking.  If  there  was 
an  incident  while  I’m  hiking  and  I  didn’t  have  a  cell  phone  signal, 
what  would  happen?’  Now  I’ve  shifted  to  a  [decentralized]  model 
where  I  have  a  general  manager  at  the  top  and  a  bunch  of  smart 
people  working  underneath  him.” 

On  a  practical  level,  the  plan  should  spell  out  specific  roles.  In  an 
emergency  it  should  be  clear  not  just  who  the  technical  contacts 
are  to  fix  or  restore  broken  IT  systems,  but  who  is  empowered  to 
speak  to  the  media  if  an  incident  occurs,  who  can  speak  to  clients 
and  who  to  call  with  legal  questions.  The  CSIRT  plan  should  indi¬ 
cate  which  executives  can  be  contacted  if  issues  need  to  be  esca¬ 
lated,  Hansen  says. 

Organizations  also  should  spell  out  who  arbitrates  disagreements 
and  has  the  final  word. “When  you’ve  got  a  whole  bunch  of  people 
in  the  room, you  need  someone  to  break  a  tie, ’’Schmidt  says. CSIRTs 
also  will  need  to  have  well-defined  connections  to  outside  groups, 
including  specific  contact  information  and  previously  established 
nondisclosure  agreements  with  local  and  federal  law  enforcement, 
and  computer  forensics  investigators,  Hansen  points  out. 

In  their  focus  on  solving  technical  problems,  organizations 
shouldn’t  lose  track  of  the  fact  that  humans  make  up  the  CSIRT, says 
Steve  Fallin,  director  of  the  rapid  response  team  at  WatchGuard.“lt’s 
easy  to  get  caught  up  in  the  excitement  and  intensity  of  what’s  hap¬ 
pening.  The  reality  is  that  people  might  need  to  take  breaks,  get  up 
and  grab  a  bite  to  eat  or  coffee. They’ll  get  more  quality  work  done 
over  time  than  trying  to  work  12  or  15  hours  without  a  break,”  he 
says. 

Finally  organizations  have  to  test  their  CSIRT  plans  before  inci¬ 
dents  occur  to  make  sure  that  everyone  who  might  be  called 
into  action  understands  their  roles.Testing  a  plan  and  get¬ 
ting  everybody  to  understand  what’s  required  of  them 
can  take  18  months  to  two  years,  Killcrece  says. 

“The  biggest  mistake  is  to  think  that  you  can  [create 
CSIRTs]  in  a  short  time  —  that  you’ll  set  it  up  and  it 
will  be  in  operation  next  month,” she  says. 

Ultimately,  the  success  of  an  organization’s  incident 
response  team  will  depend  on  its  commitment  to  that 
team:  the  resources  and  funding  allocated,  the  time 
put  into  planning  and  rehearsing  incident  response 
scenarios. 

Roberts  is  a  correspondent  for  the  IDG  News 
Service.  He  can  be  reached  at  paul_roberts@idg.com. 


More  online! 


Get  help  through  our  list  of  online 
resources  for  creating  a  CSIRT. 

DocFinder:  5626 


Setting  up  a  CSIRT 

Here  are  some  pointers  on 
creating  an  effective 
computer  security  incident 
response  team: 

Get  the  right  people  on  your 
team:  A  good  CSIRT  should 
balance  technical  experts  with 
other  key  constituencies:  busi¬ 
ness  managers,  legal,  human 
resources,  host  and  network 
specialists,  risk  and  audit 
experts,  and  at  least  one  senior 
executive  with  the  clout  to  get 
things  done. 

Every  CSIRT  is  special:  identify 
what  your  company's  core  busi¬ 
ness  processes  and  systems 
are,  what  needs  to  be  done  to 
support  and  protect  those,  and 
how  they  can  be  quickly 
restored  if  need  be. 

Start  Small:  Focus  on  develop¬ 
ing  incident  response  policies 
and  procedures  for  a  small, 
manageable  set  of  critical  ser¬ 
vices.  Once  those  are  followed, 
you  then  can  turn  your  attention 
to  hammering  out  other,  less 
critical  matters. 

Practice:  Once  you  have  a 
CSIRT  plan,  spend  time  and 
effort  to  test  it  and  make  it  work. 
Plans  that  sit  on  a  shelf  or  in  a 
drawer  might  satisfy  regulatory 
requirements,  but  they  won't 
matter  a  bit  when  bad  stuff 
starts  to  happen. 

Keep  it  fresh:  With  the  pace  of 
technological  change  and  adop¬ 
tion,  CSIRT  plans  that  aren't 
frequently  reviewed  and  updat¬ 
ed  quickly  can  become  outdated. 
For  example,  a  CSIRT  policy 
that  forbids  the  use  of  instant¬ 
messaging  applications  looks 
ridiculous  in  an  organization 
that  has  just  rolled  out  a  secure 
IM  system. 
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SERVERS  WITHIN  YOUR  REACH 
FROM  ANYWHERE 


UltraMatrix  Remote 

REMOTE  MULTIPLE  USER 
KVM  MATRIX  SWITCH 
ACCESS  OVER  IP  OR  LOCALLY 


Connects  1,000  computers  to  multiple  user  stations 
over  IP  or  locally 

High  quality  video  up  to  1280  x  1024 
Scaling,  scrolling,  and  auto-size  features 
Secure  encrypted  operation  with  login  and  computer 
access  control 

Advanced  visual  interface  (AVI) 

No  need  to  power  down  servers  to  install 
Free  lifetime  upgrade  of  firmware 
Available  in  several  models 
Easy  to  expand 


800  333  9343 

WWW.ROSE.COM 


UltraConsole 

PROFESSIONAL  SINGLE-USER 
KVM  SWITCH  SUPPORTS  UP 
TO  1000  COMPUTERS 


Connects  up  to  1000  computers  to  a  KVM  station 
Models  for  4,  8,16  computers 
Advanced  visual  interface  (AVI) 

Compatible  with  Windows,  Linux,  Solaris,  and  other  O/S 
Connects  to  PS/2,  Sun,  USB,  or  serial  devices 
Converts  RS232  serial  to  VGA  and  PS/2  keyboard 
Free  lifetime  upgrade  of  firmware 
Security  features  prevent  unauthorized  access 
Full  emulation  of  keyboard  and  mouse  functions  for  automatic, 
simultaneous  booting 
Easy  to  expand 


# 


ELECTRONICS 


A  KVM  switch  allows  single  or  multiple 
workstations  to  have  local  or  remote  access  to 
multiple  computers  located  in  server  rooms  or 
on  the  desktop  regardless  of  their  platforms 
and  operating  systems.  KVM  switches  have 
traditionally  provided  cost  savings  in  reducing 
energy  and  equipment  costs  while  freeing  up 
valuable  real  estate. 


Recognized  as  the  pioneer  of  KVM  switch 
technology,  Rose  Electronics  offers  the 
industry's  most  comprehensive  range  of 
server  management  products  such  as  KVM 
switches,  extenders  and  remote  access 
solutions.  Rose  Electronics  products  are 
known  for  their  quality,  scalability,  ease  of  use 
and  innovative  technology. 


Rose  Electrontcs  is  privately  held  with  world- 
headquarters  in  Houston,  Texas  and  sells  its 
products  worldwide  through  a  large  network  of 
Resellers  and  Distributors.  Rose  has 
Operations  in  the  United  Kingdom,  Spain, 
Germany,  Benelux,  Singapore  and  Australia. 
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OBSERVER 


How  much  can  your  network  analyzer  handle? 

Observer  is  the  only  fully  distributed  network  analyzer  built 
to  cover  your  entire  network  (LAN,  802.1 1  a/b/g.  Gigabit,  WAN). 
Download  your  free  Observer  10  evaluation  today  and  experience 
more  real-time  statistics,  more  expert  events  and  more  in-depth 
analysis  letting  you  monitor,  troubleshoot  and  manage  every  site 
on  your  network  with  one  complete  solution.  Choose  Observer. 

-  -  ■  ,  ^  ■  ;;; 

-SECURi  tv  coriTROi-  Watch  for  virus  and  hack  attacks  to 
quickly  isolate  infected  areas. 


-RlERT-  Setup  Triggers  and  Alarms  on  any  network  threshold 
and  be  the  first  to  know  of  network  issues. 

-RETWORK  0MER10RB-  Monitor  bandwidth  utilization, access 


point  utilization  rates  and  network  top  talkers  with  Real-Time  Statistics. 


W 3 


US  &  Canada 


toll  free  800.526.5958 
fax  952.932.9545 


UK  &  Europe  +44(0)1959569880 

www.nefworkinstruments.com/analyze 


Does  your  analyzer  cover  one  roc  m  or 

the  whc  le  house? 


nETWORK  CMC PL CRD 


-SECURITY  COOT POL 


etOp®  Deskt  ip  Firewall 


www.CrossTec( orp.com 
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Jimmy  had  a  fantastic  vacation.  Unfortunately, 
his  laptop  picked  up  a  tropical  disease. 

No  Problem! 

Introducing  the  world's  first  driver-centric  desktop  firewall  with  centralized  control 


•  Centrally  manage  and  control  security 
policies 

•  Driver-centric  security  is  always  on  -  even 
before  you  receive  a  network  connection 

•  Intelligent  Network  Detection  switches 
security  policies  when  you  switch  networks 

•  Kill  unknown  processes  before  they  start 

•  Stealth  ports.  Advanced  event  logging. 
Block  all  network  access  &  More 


You  know  the  story  -  Jimmy's  working  in  an  unprotected  network  environment.  Maybe  a  hot-spot  at  a  cafe  or  airport. 
He  checks  his  e-mail.  He  does  a  little  recreational  surfing.  And  his  laptop  is  open  to  attack.  But,  hey,  the  risk  is 
minimal. ..right? 

Now,  you  don't  need  to  worry.  The  NetOp  Desktop  Firewall  provides  all  the  benefits  of  both  personal  and  corporate 
firewalls  in  a  single,  powerful  package  to  shield  your  laptops  and  network  PCs.  Not  only  does  NetOp  prevent  unwanted 
or  dangerous  data  from  entering  or  leaving  your  laptops  -  wherever  they  happen  to  be  -  our  centrally  managed  process 
control  ensures  that  only  authorized  programs  and  services  can  run  on  your  system.  In  short,  NetOp  expects  the 
unexpected! 

But  we  wouldn't  want  you  to  take  any  risks.  So  try  it  yourself,  absolutely  free!  You'll  find  full  details  at 

www.CrossTecCorp.com. 


|  www.CrossTecCorp.com  1 800.675.0729 


O  Copyright  2000-2006  Danware  Data  A/S.  A*  rights  reserved.  NetOp  and  the  red  kite  are  registered 
trademarks  of  Danware  Data  A/S.  Other  brand  and  product  names  are  trademarks  of  their  respective  holders. 


■ro  the  m  akers  of  ward-winning  NetOp  Remote 


FREE 

Download  a  fully- 
functiona!  trial  copy  at 
www.CrossTecCorp.com 


NetOp' 


Control 


www.nwfusion.com 


CoM  Power  on  Any  AC 

fmmi  Device ... 

Via  Web  Browser,  Telnet, 

Modem  or  Local  Terminal 

Servers,  routers,  and  other  electronic  equipment 
occasionally  “lock-up”,  often  requiring  a  service  call 
to  a  remote  site  just  to  flip  the  power  switch  to  perform 
a  simple  reboot.  With  WTI’s  Remote  Power  Switches, 
you  can  perform  reboot  and  On/Off  control  from 
anywhere! 
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Web  Browser  Access  for  Easy  Setup  and 
Operation 

Encrypted  Password  Security 

Dual  15  Amp  Power  Circuits 
Total  30  Amps  Maximum  Load 

115  VAC  and  230  VAC  Models 
Sixteen  (16)  Individual  Outlets 
RS232  Modem  /  Console  Port 
Network  Security  Features 
Power-Up  Sequencing 

Also  Available  in  4,  8  &  16  Plug  Models  and 
Horizontal  1 U  and  2U  Models 


Web  Browser  Interface 
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Want  an  On-Line  Demo? 

Just  call  or  email  and  you’ll  see  for  yourself  why  so  many 
network  professionals  choose  WTI. 


Yes,  We  are  Customer  Friendly! 

/  Two  Year  Warranty 
A  We  Stock  for  Same  Day  Shipment 
A  30  Day  No-Fee  Return  Policy 
A  Start-up  Cables  and  Rack  Kits  Included 
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Power 
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www.wti.com 


western  telematic  incorporated 

5  Sterling  •  Irvine  •  California  •  92618-2517  •  (800)  854-7226 


Instantly  Search 
Gigabytes  of  Text 
Across  a  PC,  Network,  Intranet  or  Internet 

Publish  Large  Document  Collections  to  the  Web  or  to  CD/DVD 


images 


♦  over  two  dozen  indexed,  unindexed,  fielded  &  full-text  search  options 

♦  highlights  hits  in  HTML,  XML,  &  PDF  while  displaying  embedded  Imks,  formatting  &  | 

♦  converts  other  file  types  (word  processor,  database,  spreadsheet,  email,  ZIP,  Unicode,  etc.) 
to  HTML  for  display  with  highlighted  hits 

“The  most  powerful  document  search 
tool  on  the  market”  -Wired  Magazine 


“Intuitive  and  austere ...  a  superb 
search  tool”  -PC  World 


“Blindingly  fast”  -Computer  Forensics: 
Incident  Response  Essentials 

“A  powerful  arsenal  of  search  tools” 

-The  Mew  York  Times 


dtSearch  “covers  all  data  sources ...  \ 
powerful  Web-based  engines”  -eWEEK) 

“Searches  at  blazing  speeds”  } 
-Computer  Reseller  Mews  Test  Center  J 

In  the  past  two  years,  over  half  of  the 
Fortune  15  purchased  dtSearch 
developer  or  network  licenses. 


♦  tir  Win  &  .NET 
♦  lor  Linux 

♦  call  tor  pricing 


See  www.dfsearch.com  for: 

♦  hundreds  of  developer  case  studies  &  reviews 

♦  fully-functional  evaluations 

1-800- IT-  FINDS 

sales@dtsearch.com 


PUBLISH 

for  CD /DVDS 
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♦  from  $2,500  WfrrnSm 

The  Smart  Choice  for  Text  Retrieval*  since  1991 


Switthtt  taking ,» 


Reading  someone 
else's  issue  of 

NetworkWorld? 

Subscribe  today  and  receive  your  own 
1-year  subscription  for  FREE  - 


a  $129.00  value! 

Go  to  http://subscribenw.com/mynw  for  your  free  subscription. 
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Smart  UPS  •  Back  UPS 
Brand  New  UPS  Replacement 
\  Battery  Kits 


.com 


CBics/Cables/Parts 

Also  Available:  Extreme,  Adtran 

in  Stock  *  Fast  Delivery  •  No  Expedite  Charges 

COMSTAR,  INC 

The  #1  Network  Remarketer 


Call  Us  1-866-883-9200 


Fax  952*835*1927 


www.comstarlnc.com 


Server  Technology 


Solutions  for  the  Data  Center  Equipment  Cabinet 


When  servers  and  network  devices 
in  the  data  center  lock-up,  network 
managers  need  fast,  secure  and 
reliable  tools  to  respond.  With 
Sentry™  Remote  Site  Managers, 
an  administrator  can  immediately 
reboot  a  remote  system  with  just 
a  few  mouse  clicks.  Sentry  also 
provides  accurate  input  current 
power  monitoring,  environmental 
monitoring  and  integrated  secure 
console  management  using  SSH. 


Sentry  Gives  You  Se<  re  Web/I P  Based  Remote  Site  Management 


Secure  Shell  (SSHv2)  Encryption  < 
"NEW!"  SSLv3  Secure  Web  Browser  < 
"NEW!"  Active  Directory  with  LDAP  < 
SNMP  MIB  &  Traps  < 
Integrated  Secure  Modem  < 
True  RMS  Power  Monitoring  < 
Outlet  Receptacle  Grouping  for  Dual-Power  Servers  < 
Fail-Safe  Transfer  Switch  for  Single-Power  Supply  Servers  < 
Power-up  S  quencing  Prevents  Power  In-rush  Overload  < 
Temperature  &  Humidity  Environmental  Monitoring  < 
Zero  U  &  Rack-mount  Models  < 
1 1 0/208  VAC  Models  with  30-Amp  Power  Distribution  < 
NEBS  Approved  48  VDC  Models  Available  < 
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Server  Technology,  Inc* 

Server  Technology,  Inc.  toll  free  +1 .800.835. 1 51 5 

1040  Sandhill  Drive  tel  +1 .775.284.2000 

Reno,  NV  89521  fax  +1 .775.284.2065 

USA 

www.servertech.com 

sales@servertech.com 


ISO  9001  2000 
QUALITY 


©Server  Technology.  Inc.  Sentry  is  a  trademark  of  Server  Technology.  Inc. 


Good  things  come  in  small  packages. 


Our  small  Low  Profile  Server  Rack  Cabinets 
have  some  very  big  features:  •  Vented  top 
and  bottom  panels  •  Cable  plate  •  Welded 
vented  side  panels  with  handle  •  Adjustable 
rack  rails  •  Leveling 
feet  •  Optional  casters 
•  Vented  front  and  rear 
doors  for  better  airflow. 


Information  Support  Concepts,  inc 

714  N.  Watson  Rd  •  Ste.,  302  •  Arlington,  TX  76011 
Visit  www.iscdfw.com  or  call  1-800-458-6255  for  more  information. 

Solutions  for  IT  -  Network  -  Telecom  Professionals. 

©  2004  Information  Support  Concepts  Inc.  all  rights  reserved 
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Remote  Monitoring  Solutions 

RM0N  and  HCRM0N  Probes 

You  want  remote  monitoring  solutions  for  visibility  into  every  part  of  your  network.  With 
RM0N  and  HCRM0N  Probes  from  Network  Instruments,  it’s  easy.  Convert  any  PC  into  a 
complete  remote  network  monitoring  data  collection  device.  Use  the  RM0N  appliance 
(available  in  1U  and  4U  systems)  for  a  full  turn-key  solution.  Call  800-526-7919  for  more 
information  or  visit  our  website  at  www.networkinstruments.com/RMON. 


1  Full  compliance  with  RM0N1 ,  RIVI0N2  and  HCRM0N 
1  High  capacity  RM0N  Probes  provide  full-duplex  Gigabit 
capture  compatible  with  any  RM0N  management  console  or 
collection  facility  (Observer  ,  OpenVIew,  Concord" 

NetScout' ,  Micromuse™) 

1  Complete,  industry  standard,  software-based  probes  for 
Windows  2000/XP 

1  Software  based,  non-dedicated  data  collection 
1  Compatible  with  Network  Instruments’  optimized  ErrorTrak™ 
N0IS  drivers,  which  display  true  errors-by-station. 


www.  network  instruments. com/RMON 
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US  &  Canada:  (952)  932-9899 

Toll  free:  (800)  526-7919 

UK  &  Europe:  +44  (0)  1959  569880 
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©  2003  Network  Instruments,  LLC.  All  rights  reserved.  Network  Instruments,  Observer,  ErrorTrak  and  the  Network  Instruments  logo  are  trademarks 
or  registered  trademarks  of  Network  Instruments,  LLC.  All  other  trademarks,  registered  or  unregistered,  are  sole  property  of  their  respective  owners. 


Senior  Software  Engineer  will 
architect  and  develop  financial 
wireless  applications  requiring 
high  security,  high  reliability  and 
high  availability  applications  to 
run  on  Blackberry,  PALM 
Operating  System,  IE,  and 
Netscape  using  a  single  code 
base.  Will  develop  PRC,  PQA, 
and  Web  Clipping  applications 
using  C++  or  VC++  and  Code 
Warrior  that  run  on  PALM  oper¬ 
ating  system.  Will  apply  knowl¬ 
edge  of  Visual  Interdev  and 
understanding  of  securities 
research.  Will  write  components 
in  Visual  Basic  and/or  Visual 
C++  and  MTS.  Will  build  an  idea 
into  a  production-quality  interac¬ 
tive  web-based  application. 
Requires  Bachelor  of  Science  or 
equivalent  in  Computer  Science, 
Engineering,  Math,  or  Physics 
and  three  (3)  years  in  job  offered 
OR  three  (3)  years  experience 
developing  mobile/wireless  and 
web  applications.  Candidate 
must  also  possess  demonstrat¬ 
ed  expertise  developing  PRC, 
PQA  and  Web  Clipping  applica¬ 
tions  using  Metroworks  and 
Code  Warrior;  demonstrated 
expertise  developing  middle¬ 
ware  using  COM/DCOM,  XML, 
and  SOAP;  and  demonstrated 
expertise  in  database  design 
including  writing  stored  proce¬ 
dures  and  triggers  in  SQL  and 
PL/SQL.  Salary:  $77,500/yr,  M- 
F,  9AM-5PM.  Send  2  resumes 
to  Case  #200300408,  Labor 
Exchange  Office,  19  Staniford 
St.,  1st  fl.,  Boston,  MA  02114. 
EOE.  Applicants  must  be  work¬ 
ers  eligible  to  accept  full-time 
employment  in  U.S. 


COMPUTER  PROFESSIONALS 
Opportunities  for: 

•  SYSTEMS/BUSINESS/ 
PROGRAMMER  ANALYSTS 

•  PROCESS  CAPABILITY 
ANALYST 

•  QC  ANALYST 

•  WEB  ARCHITECTS/ 
DEVELOPERS 

•  SYSTEMS  ANALYSTS 

•  WEB  GRAPHIC  DESIGNERS 

•  NETWORK  ENGINEERS 

•  PROGRAMMER/ANALYSTS 

•  SOFTWARE  ENGINEERS 
SKILLS: 

•  COLD  FUSION  •  SPECTRA 

•  ORACLE  •  VISUAL  BASIC 

•  VISUAL  C++  •  SIEBEL  •  ASP 

•  COM,  DCOM  •  JSP  •  HTML 

•  JAVA,  JAVA  BEAN  •  EJB  JAVA 
SERVLETS  •  WEBSPHERE 

•  IBM  MQ  SERIES  •  XML.UML 

•  MTS  •  CLARIFY  •  PERL 

•  OBJECTPERL  •  SPYPERL 

•  SMALLTALK  •  PL/SQL 

•  VISUAL  AGE  •  COBOL,  SPL, 
UNIX 

Visit  our  website  @ 
www.computerhorizons.com 
Attractive  salaries  and  benefits. 
Please  forward  your  resume  to: 
H.R.  Mgr.,  Computer  Horizons 
Corp.,  49  Old  Bloomfield 
Avenue,  Mountain  Lakes,  New 
Jersey  07046-1495.  Call 
973-299-4000.  E-mail:  jobs@ 
computerhorizons.com.  An 
Equal  Opportunity  Employer  M/F. 


Sr  DBA  to  lead  teams  to  archi¬ 
tect,  design,  install,  upgrade, 
perform  tuning,  backups  of 
Oracle,  Informix  instances  on 
Sun  Solaris,  Windows  servers; 
configure,  manage  SQL*Net  and 
Oracle,  Apache  web  server  with 
UNIX,  Windows  envir;  deploy 
Servlets  in  Apache  JServ;  de¬ 
sign,  develop  new  data  inter¬ 
faces  with  legacy  systems  using 
Oracle  tools  and  Informix  tools 
such  as  Import/Export,  SQL 
Loader,  PL/SQL;  manage  SQL 
Server  for  migrating  the  data 
from  SQL  server  to  any  data¬ 
base;  parsing  the  XML  strings 
into  different  applications;  create 
stored  procedures,  packages 
and  database  triggers;  propose/ 
implement  methodologies/best 
practices.  Require  MS  or  foreign 
equiv  in  CS/Engg  (any  branch) 
or  related  field  withtwp  yrs  exp 
as  a  DBA.  Competitive  salary. 
Travel  Involved.  F/T.  Resumes 
to  Global  IT  Solutions  USI,  Inc., 
600  Stevens  Port  Drive,  Ste  125, 
Dakota  Dunes,  SD  57049. 


Mainframe  Analyst/Programmer 
(Miami,  FL)  Write,  update,  main¬ 
tain  prgms  written  in  COBOL/ 
CICS  for  mainframe  &  fin’l  ser¬ 
vices  clients.  Create/  maintain 
IDMS/R  databases.  Review 
work  flow  charts  dvlpmt  by 
systm  analyst/prgmrs  to  under¬ 
stand/advise  on  the  computer 
tasks  to  perform.  Create  des¬ 
cription  for  prgmrs/systms  ana¬ 
lysts  to  understand  how  prgm 
should  access  data.  Write  phys¬ 
ical  d/base  description  to  protect 
it  from  unauthorized  access  & 
tampering.  Provide  techl  support 
&  guidance  for  COBOL  systms. 
Coord  changes  in  computer 
d/bases.  Review  changes  in 
physical  dsgn  of  d/bases  to 
assess  effect  on  physical 
d/bases.  Establish  computer 
access  level  for  each  segment 
of  d/base.  Specify  user  access 
level  for  retrieval,  modification, 
deletion.  Conduct  qlty  control 
testing  on  codes  &  correcting 
errors.  Enter  codes  to  create 
production  d/bases  &  utilities 
prgms  to  monitor  performance 
of  d/base.  Modify  data  in  fine- 
tuning  d/base  operations. 
Generate  prototype  for  potential 
clients  to  visualize  applies.  9 
positions  available.  40  hrs/wk,  9- 

5  pm,  competitive  salary.  Bach 
deg  or  equiv,  based  on  edu  or 
exp,  in  Comp  Sci/Systems  Engg 
or  related  field,  +  2  yrs  exp  in  job 
offd.  Resume  to:  SMX  Services 

6  Consulting,  Inc.,  7220  NW. 
36th  St„  Ste  #421,  Miami,  FL. 
33166.  Attn:  Richard  Quevedo. 


Senior  Software  Engineer  want¬ 
ed  to  build  and  manage  a  team 
of  developers  to  enhance  and 
develop  commercial,  n-tier,  web- 
based  data  applications.  Must 
have  Bachelor's  degree  in  Com¬ 
puter  Science  or  related  field, 
and  3  years  experience  devel¬ 
oping  commercial  n-  tier  web- 
based  database  applications  for 
legal  information  tracking  using 
ASP.VB,  Com+  transactional 
technology,  and  SQL  Server, 
including  experience  with  ad¬ 
vanced  components,  report  de¬ 
velopment  using  SQL  Reporting 
Services,  and  integration  with 
document  management/assem¬ 
bly  systems,  as  well  as  2  years 
experience  importing  data  from 
3rd  party  systems  and  designing 
software  installation  routines. 
(Experience  can  be  concurrent). 
Contact  Two  Step  Software  Inc., 
169  Elm  Street,  2nd  Floor,  Wal¬ 
tham,  MA  02453,  Attn:  Kristin 
Sheard,  HR  Coordinator. 


SAS  Information 
Systems  Specialist 

Valero,  Inc.  has  position 
opening  for  SAS  Information 
Systems  Specialist.  The 
Information  Systems  Special¬ 
ist  will  be  responsible  for  ana¬ 
lyzing  requirements,  design, 
development  and  testing  of  a 
seamless  integration  process. 
Must  have  B's  degree  in  engi¬ 
neering,  comp  sci  or  related 
degree  (foreign  degree  equiv¬ 
alent  accepted)  w /  2  years  in 
position  or  as  software  devel¬ 
oper,  programmer  or  consul¬ 
tant.  Please  forward  resume 
to:  Jennifer  Moreno,  One 
Valero  Way,  San  Antonio,  TX 
78249.  No  email  or  telephone 
inquiries. 


Sr.  Network  Enginner/Project 
Mgr.  Elitech  International  Corp 
seeks  individual  to  design  and 
implement  voice  networks,  PBX 
voice  mail  and  security  systems 
for  clients.  Qualified  apps  must 
possess  BS  Electronic  Eng¬ 
ineering  and  5  years  of  progres¬ 
sively  responsible  experience  as 
a  voice/telecommunications 
engineer.  Submit  resume  and 
references  to  J.Leo,  Managing 
Director,  485  Seventh  Ave.,  Ste. 
900  New  York  NY  10018 


Business  Analysts  to  gather,  ana¬ 
lyze,  document,  propose  systems 
solutions;  lead  JAD  sessions  to 
analyze,  gather,  define  user  reqs, 
business  process  descriptions, 
using  rational  nose,  visio  etc.;  re¬ 
engineer  business  processes/pro¬ 
cedures,  define/  document  data 
models  using  SSAD,  OOAD, 
RUP;  analyze  system  perfor¬ 
mance  exceptions,  anomalies, 
problem  areas;  provide  direction, 
assist  project  teams;  Require  BS 
or  foreign  equiv  in  Business/Mgmt/ 
CS/Engg  with  2  yrs  exp  as 
Business  analyst  or  similar.  Comp 
salary.  Travel  involved.  F/T. 
Resume  to:  HR,  Bahwan  Cybertek 
Inc.,  209  West  Central  Street,  Ste 
312,  Natick,  MA  01760. 


Systems  Analyst:  Mfg/ 
Pro  manufacturing  and 
logistics  supply  chain 
application  systems. 
MBA  &  min  2  yrs  exp 
Mfg/Pro.  Mail  resume  to 
Al  Edenzon,  Firmenich, 
PO  Box  5880,  Prince¬ 
ton,  NJ  08543. 


Software  Engineer  reqd  by 
Specialized  Software  &  Conslt. 
Co.  Create  web  design  using 
Macromedia  dreamweaver  & 
Adobe  Photoshop.  Dvlp  Win 
applies  using  VB.NET  &  C#.NET. 
Dvlp  web  applies  using  ASP.NET 
&  ASP  w/Visual  Studio.NET.  Dvlp 
d/base  scripts  for  Oracle  &  SQL 
Server  d/base.  Create  reports 
using  Crystal  Reports  for  various 
client  reqmts.  Dvlp  secure  XML 
interface  btwn  client  &  server. 
Job  to  be  performed  in  Rego 
Park,  NY  &  various  unanticipated 
client  sites  throughout  US  as 
assigned.  Req  Masters  &  1  yr 
exp  in  job  offd.  40hr/wk,  9a  -  6p, 
M-F.  Respond  to  Kapra 
Consultants,  Inc,  9620  67th  Ave, 
Rego  Park,  NY  11374. 


Prog  Analysts  to  analyze,  test 
wireless/web  s/w  systems  using 
C,  Java,  XML/  XSL,  J2EE, 
JDBC,  EJB,  JSP,  Servlets, 
HTML,  ASP,  Oracle,  SQL  Server 
on  Windows,  LINUX  &  UNIX 
OS;  determine  functional  reqs, 
write  design  specs,  evaluate 
tech,  feasibility;  develop  report¬ 
ing  system  for  wireless  appl  on 
web  servers/appl  server;  provide 
guidance  for  user  problems, 
trouble  shoot  production  issues. 
Require:  BS  or  foreign  equiv  in 
CS/Comp  Engg  and  2  yrs  exp  in 
IT  or  M.S.  in  CS/Comp  Engg. 
High  salary.  Job  code  A2W1204: 
HR,  Air2Web,  Inc.,  1230  Peach¬ 
tree  Street  NE,  Promenade  II, 
12th  Fl.,  Atlanta,  GA30309. 


Programmer 

Analysts 

Seneca  Foods  Corporation 
is  seeking  Programmer 
Analysts  experienced  in 
LINC  programming.  Inter¬ 
ested  applicants  please 
respond  to:  3736  S.  Main 
St.,  Marion,  NY  14505  Attn; 
HR.  EOE 


Sr.  S/W  Engineersto  manage 
teams,  to  develop,  test,  implement, 
SAP  appls  in  PM,  SM,  MM  and 
WM;  analyze,  design,  develop 
appls  using  SAP  R/3,  ABAP/4,  SAP 
Scripts,  ALE/EDI  etc  under 
Windows,  UNIX  OS;  evaluate, 
gather  user  reqs  to  determine  feasi¬ 
bility,  cost,  time  and  develop  specs; 
devise  system-testing  methodolo¬ 
gy,  test/debug  project  appl  code 
train  team  members,  end  users. 
Require  MS  or  foreign  equiv  in 
CS/Engg  (any  branch)  and  3  yrs 
exp  or  a  BS  or  foreign  equiv  in 
CS/Engg  (any  branch)  and  5  yrs 
relevant  progressive  exp.  Travel 
involved,  comp,  salary,  f/t.  Resume 
to  HR,  Smartsoft  International,  Inc., 
3965  Johns  Creek  Court,  Ste  500, 
Suwanee,  GA30024 


Software  Engg.  needed. 
Burlington,  MA  based  company 
has  positions  avail,  for  qualified 
candidates  possessing  MS/BS 
or  equiv.  w/  relevant  work  expe¬ 
rience.  Duties  include:  Design, 
develop,  implement  &  customize 
software  applications  for  vari¬ 
ous  business  clients  using  3  of 
the  following:  Unix,  Sun  Solaris, 
IBM-AIX  &  SQL  Servers, 
Weblogic,  C#,  C/C++,  Visual 
Basic,  VB.NET,  Java,  .NET, 
J2EE,  ASP.NET/ADO.NET, 
DOORS,  Rational  Rose  and 
Visio,  Websphere,  PL/SQL  & 
Oracle/Sybase  databases.  Mail 
resume  to  Iconsoft  Inc.,  101 
Cambridge  St.,  Suite  305, 
Burlington,  MA  01803. 


Software  Engg.  Needed. 
Seeking  qual.  candidates  pos¬ 
sessing  MS/BS  or  equiv 
and/or  rel.  work  exp.  Part  of 
the  req.  rel.  exp.  must  include 
3  yrs.  working  w/  Lotus  Script, 
SAP  Workflow,  &  JavaScript. 
Duties  include  design,  code, 
test,  &  debug  applications. 
Analyze  &  eval.  software  req. 
to  determine  feasibility  of 
design.  Work  w /  Lotus  Script, 
SAP  Workflow,  JavaScript,  Ja¬ 
va,  MQ  Series,  &  XML.  Fwd. 
res.  &  ref.  to  DB  Concepts,  HR 
Dept.,  10  Presidential  Way, 
Woburn,  MA  01801. 


Prog  Analysts  to  analyze,  devel¬ 
op  appls  using  C,  C++,  Java, 
XML,  VBScript,  VB,  HTML,  SQL, 
etc;  use  Mercury  Win  Runner  & 
Load  Runner  to  provide  automat¬ 
ed  functional/regression  testing, 
performance  load  and  stress 
testing  for  web  based  appls; 
interact  with  clients,  end  users  for 
reqs  gathering,  analysis,  plan¬ 
ning  &  implementation;  modify, 
debug  existing  software  appls. 
Require  BS  or  foreign  equiv  in 
CS/Engg  (any  branch)  with  2  yrs 
of  exp  in  IT  or  an  MS  or  foreign 
equiv  in  one  of  the  above  fields. 
F/T.  competitive  salary.  Travel 
involved.  Resumes  to:  HR, 
Semafor  Technologies,  Inc., 
3300,  Holcomb  Bridge  Road, 
Ste212,  Norcross,  GA30092. 


PROGRAMMER  ANALYSTS 
req’d  for  Raleigh,  NC  office. 
Design  &  Develop  software 
applications  using  C,  C++,  VB, 
Delphi,  ASP,  XML,  UML,  Cool- 
gen,  Interwoven,  Oracle,  PL/ 
SQL,  Developer  2000  &  De¬ 
signer  2000;  Bachelors  or 
Equivalent  req'd  in  Computers, 
Engineering,  math  or  related 
field  of  study  +  2  yrs  of  related 
exp.  40  hrs/wk.  Must  have  legal 
authority  to  work  permanently  in 
the  U.S.  Send  resume  to  HR 
Manager,  Allied  Business 
Consulting,  Inc.,  8700  W.Bryn 
Mawr,  Suite  800  South, 
Chicago,  IL  60631. 


Finding  the  right 
combination  of 
IT  professionals  is  like 

putting  together  a  puzzle 
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We  can  help 
you  fill  in  the 
missing  pieces 


IT  Careers 
audience  consists 
of  the  most  qualified 
IT  professionals 
with  the  in-demand 
skills  you  need. 


www.itcareers.com 


Search  Resumes 
Post  Jobs 
GET  RESULTS! 
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IT  Careers  offers  you 
information  on  the  most  relevant 
career  management  topics 
relative  to  IT  recruitment. 

Here’s  what’s  coming  up  next: 

February  14: 

IT  Careers  in  Healthcare 

February  28: 

Diversity:  Where  are  the  Role 
Models? 


Be  sure  to  take  advantage  of  this 
great  opportunity  to  brand  your 
company  or  display  your 
recruitment  message  in  IT  Careers 
amid  these  specialized  editorials 


Visit  us  at: 

www.itcareers.com 

Powered  By: 

@  CareerJouroal.com 
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For  over  20  years,  Syntel  employees  across  North  America,  Europe,  and  Asia 
have  helped  build  advanced  information  technology  systems  for  leading 
Fortune  500  companies  and  government  organizations  to  improve  their  effi¬ 
ciency  and  competitiveness.  Today,  Syntel  professionals  are  building 
rewarding  careers  by  providing  solutions  in  e-business,  CRM,  Web  Design 
and  Data  Warehousing.  Come  discover  why  Syntel  has  been  ranked  one  of 
“The  200  Best  Small  Companies  in  America"  for  the  last  four  years  in  a  row. 

Due  to  our  rapid  growth,  we  have  immediate,  full-time  opportunities  for  both 
entry-level  and  experienced  individuals  in  the  following  positions: 

Business  Development/ Account  Specialist 

Manage  Sales  activities  and  achieve  sales  quota  for  assigned  territory.  Help 
Syntel’s  sales  leadership  in  planning  and  rolling  out  an  inside  sales  strategy. 

Project  Leaders/Managers 

Train  and  manage  programmer  analysts  on  installation  and  configuration  of 
hardware  and  software  application,  as  well  as  be  responsible  for  project 
planning  an  quality  assurance. 

Prog  rammers/ Analysts 

Analyze,  design,  develop,  test,  and  maintain  relational  database 
management  systems. 

The  above-mentioned  positions  should  possess  any 
of  the  following  skills: 


Mainframe 

•  IMS  DM/DC  or  DB2,  MVS/ESA, 
COBOL,  CICS 

DBA 

•  ORACLE  OR  SYBASE 

Client-Server/WEB 

•  Ab-initio 

•  Websphere 

•  Com/Dcom 

•  Web  Architects 

•  Datawarehousing 

•  Informix,  C  or  UNIX 

•  Oracle  Developer  or  Designer 
2000 

•  JAVA,  HTML,  Active  X 

•  Web  Commerce 

•  SAP/R3,  ABAP/4  or  FICO  or  MM 
&SD 


•  Focus,  IDMS  OR  SAS 


•  DB2 

•  Oracle  Applications  &  Tools 

•  Lotus  Notes  Developer 

•  UNIX  System  Administrator 

•  UNIX,  C,  C++,  Visual  C++, 
CORBA,  OOD  or  OOPS 

•  WinNT 

•  Sybase,  Access  or  SQL  server 

•  PeopleSoft 

•  Visual  Basic 

•  PowerBuilder 

•  IEF 


Some  positions  require  a  Bachelor’s  degree,  others  a  Master’s  degree.  We 
also  accept  the  equivalent  of  the  degree  in  education  and  experience. 

With  Syntel  (NASDAQ:  SYNT),  you’ll  enjoy  excellent  compensation,  full  ben¬ 
efits,  employee  stock  purchase  plan  and  more.  Please  forward  your  resume 
and  salary  requirements  to:  Syntel,  Inc.,  Attn:  Recruiting  Manager-LDOI ,  525 
E.  Big  Beaver,  Suite  300,  Troy,  Ml  48083.  Phone:  248-619-2800;  Fax:  248- 
SI  9-2888;  Equal  Opportunity  Employer. 
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www.nwfusion.com 

Sales  Offices 


Carol  Lasker,  Associate  Publisher/Vice  President 

JaneWeissman,  Sales  Operations  Manager 

Internet:  clasker,  jweissman@nww.com 

(508)  460-3333/FAX:  (508)  460-1237 _ 

New  Yor  k/New  Jersey 

Tom  Davis,  Associate  Publisher,  Eastern  Region 
Elisa  Della  Rocco,  Regional  Account  Director 
Agata  Joseph,  Senior  Sales  Associate 
Internet:  tdavis,  elisas,  ajoseph@nww.com 
(201)  634-2300/FAX:  (201)  634-9286 

Northeast 

Elisa  Della  Rocco,  Regional  Account  Director 
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Changing  expectations 

Distinguishing  hype  from  reality  can  lead  IT  research 
firms  to  scale  back  previous  estimates.  Although  there 
are  examples  of  recent  estimates  being  more  on  target. 

Gartner  on  ASPs:  Gartner  in  1999  predicted  the  ASP  market 
would  reach  $22  billion  by  2003  and  then  in  2001  scaled  back  its 
expectations  for  the  2003  market  to  $7.4  billion. The  actual  ASP 
market  for  2003  was  $2.9  billion. 

AMR  Research  on  CRM:  AMR  in  1999  predicted  the  CRM  market 
would  reach  $16.8  billion  by  2003.  Actual  market  size  in  2003  was 
$9.9  billion,  the  firm  said  last  year. 

IDC  on  blade  servers:  IDC  said  in  2001  the  blade  server  market 
would  hit  $4.5  billion  by  2005.  Last  year  it  reduced  its  2005  estimate 
to  $2.8  billion. 

Dell’Oro  Group  on  wireless  LANs:  Dell’Oro  in  2002  pegged  the 
WLAN  market  to  grow  to  $3.1  billion  in  2006. This  year  it's  holding 
steady  with  its  2006  estimate  —  still  at  $3.1  billion. 


Forecasting 

continued  from  page  1 

HP  to  the  head  of  Sun  wanted 
me  to  find  a  new  career  in  toilet 
cleaning,  hopefully  someplace 
where  the  toilets  were  particu¬ 
larly  nastyf  recalls  Enderle.who  is 
now  president  and  principal 
analyst  at  Enderle  Group.“l  don’t 
think  there  was  a  month  that 
went  by  when  I  didn’t  think 
someone  would  fire  my  butt.” 

Along  with  angering  vendors, 
the  report  prompted  one  of 
Enderle’s  colleagues  at  the  time 
to  proclaim  him  an  idiot,  in  a 
Wall  Street  Journal  story  for  say¬ 
ing  Macintosh  users  would  ever 


migrate  away  from  their  beloved 
platform. 

While  many  of  the  shifts 
Enderle  predicted  came  to 
pass,  the  report  was  not  com¬ 
pletely  on  target,  Enderle  says. 
“I  was  too  high  on  the  adop¬ 
tion  of  Windows  95  —  I  was 
too  high  by  a  lot.” 

Just  as  it’s  easy  to  point  the  fin¬ 
ger  at  weather  forecasters  when 
unexpected  atmospheric  condi¬ 
tions  dampen  a  day  IT  analysts 
take  abuse  when  expected  mar¬ 
ket  dynamics  don’t  pan  out.  The 
nature  of  the  discipline,  com¬ 
bined  with  the  shaky  relation¬ 
ship  between  analyst  firms  and 
IT  vendors  —  which  are  both 
market  sources  and  research 
sponsors  —  add  to  the  challenge 
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analysts  face. 

“No  question  that  no  matter 
what  anybody  says,  this  is  for  the 
most  part  more  of  an  art  than  a 
science,  doing  forecasting,”  says 
Jeff  Kaplan,  managing  director  of 
Thinkstrategies. 

“Especially  when  you  look  at 
segments  that  are  for  the  most 
part  supported  by  vendors  and 
service  providers  who  don’t  have 
to  report  specific  revenue  or 
shipment  figures  by  product  or 
service  line,”  he  adds. 

Kaplan  was  on  the  number¬ 
crunching,  market-sizing  side  of 
research  before  founding  con¬ 
sulting  research  firm  Think¬ 
strategies,  which  isn’t  in  the  busi¬ 


ness  of  quantifying  markets. 

The  art  of  market  research 
involves  taking  on  faith  the 
estimates  vendors  provide,  cor¬ 
relating  those  with  customers’ 
stated  buying  intentions,  and 
factoring  in  macroeconomic 
and  geopolitical  issues,  Kaplan 
says. “That  composite  picture 
represents  a  best  effort  at  chart¬ 
ing  a  path  for  where  a  market 
might  go,”  he  says. 

But  even  that  often  isn’t 
enough.  In  1994,  Enderle  forecast 
the  market  for  Win  95  would  hit 
$40  million  in  its  first  year,  but  it 
only  reached  about  $24  million. 
“It  just  never  crossed  my  mind 
when  I  did  that  prediction  that 
Microsoft  would  have  this  big 
launch  party  and  then  stop  mar- 
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keting.  Sales  dropped  off  a  cliff,” 
he  says. 

Earl  Perkins,  an  analyst  in  the 
security  and  risk  strategies  group 
at  Meta  Group,  finds  two 
extremes  in  analyst  tactics.There 
are  the  really  meticulous,  military 
types  who  gather  data  like  squir¬ 
rels  gathering  nuts  for  winter, 
Perkins  says. “They’re  really  not 
satisfied  until  their  nest  is  so  full 
of  nuts,  they  can’t  climb  in  the 
nest.  But  if  you  do  that,  the  event 
has  already  passed.  So  then  here 
you  are  a  historian  rather  than  a 
predictor;”  he  says. 

At  the  other  extreme  are  ana¬ 
lysts  who  read  one  thing,  talk  to 
one  person  and  make  a  guess, 
Perkins  says.  Meta  Group  — 
which  Gartner  is  in  the  process 
of  acquiring  —  looks  to  operate 
in  the  middle,  balancing  data 
with  insights  gleaned  more  from 
customers  than  vendors,  he  says. 

When  Sun  acquired  Waveset 
Technologies  in  2003,  Perkins 
predicted  Waveset  would  disap¬ 
pear,  and  it  didn’t.“I  thought  they 
would  pull  a  typical  Sun,  gut  the 
company  take  the  technology 
and  let  everybody  walk,”  Perkins 
says.  Instead  Sun  deviated  from 
tradition  and  formed  a  division, 
he  says. 

The  best  way  to  respond 
when  a  prediction  doesn’t  bear 
out  is  to  own  up,  Perkins  says.  “I 
go  back  and  say  I  was  wrong," 
he  says. “Customers  prefer  peo¬ 
ple  who  are  honest  and  admit 
their  mistakes.” 

Getting  it  right 

Coming  up  with  predictions  is 
a  collaborative  process,  says 
Jasmine  Noel,  a  principal  analyst 
at  Ptak,  Noel  &  Associates.'1! 
never  try  to  sit  in  a  room  by 
myself  and  come  up  with  these 
things,”  she  says.To  me,  it’s  the 
conversations  with  people  out¬ 
side  of  my  area  of  expertise  that 
can  really  help  predictions.” 

She’s  learned  over  the  years 
that  predictions  have  to  be 
focused  to  be  realistic.  A  couple 
of  years  ago  Noel  predicted 
application  management  tactics 
would  change  dramatically  in 
2005  to  handle  the  influx  of 
smaller,  more  modular  applica¬ 
tions  built  on  top  of  Java  2 
Platform  Enterprise  Edition  and 
.Net  platforms. 

But  slower-than-expected  adop¬ 
tion  of  new  application  plat¬ 
forms  has  lessened  the  need  for 
a  new  management  approach. 
While  industries  such  as  finan¬ 
cial  and  retail, which  modify 
applications  frequently  have 
adopted  new  development 
methods,  other  industries  with 


more  static  application  environ¬ 
ments  haven’t  seen  the  need  to, 
Noel  says.“I  didn’t  take  into 
account  the  fact  that  people’s 
budgets  would  still  be  this  tight,” 
she  adds. 

Tempering  predictions  and  not 
expecting  all  industries  to  be¬ 
have  as  one  is  critical,  Noel  says. 
“The  entire  computing  industry 
is  not  uniform,” she  says. 

Looking  ahead,  Noel’s  predic¬ 
tions  —  such  as  the  convergence 
of  configuration  management 
and  performance  management 
technologies  —  are  predicated 
on  a  series  of  interconnected 
developments  in  the  broader  IT 
industry 

“It  took  me  a  while  as  an  ana¬ 
lyst  to  recognize  that  these 
other  things  have  to  happen  in 
order  for  predictions  to  come 
true,”  Noel  says. “Analysts  as  an 
industry  have  gotten  better  at 
doing  that.  Fewer  people  are 
making  predictions  that  are 
just  way  out  there.” 

Sometimes  being  a  responsi¬ 
ble  analyst  means  being 
patient. Thomas  Nolle,  founder 
and  president  of  CIMI,  refused 
to  forecast  the  market  for  VPNs 
or  VoIP  technologies  until  2002. 
There  simply  weren’t  enough 
buyers  and  therefore  enough 
data  available  to  make  a  legiti¬ 
mate  forecast,  he  says. 

Over  the  past  20  years,  Nolle,  a 
former  computer  programmer, 
has  honed  a  computer  forecast 
model  he  built  that  simulates 
buyers’  technology-purchasing 
decisions  using  econometric 
indicators  and  a  base  of  20-plus 
years  of  survey  data. 

His  reports  aren’t  always  popu¬ 
lar  because  they  don’t  tend  to 
over-inflate  market  estimates, 
Nolle  says.'The  truth  is  frequent¬ 
ly  not  tremendously  interesting,” 
he  says. 


In  the  past,  not  all  research 
firms  were  as  diligent  about  try¬ 
ing  to  weigh  all  the  appropriate 
factors  as  they  needed  to  be, 
Kaplan  says.'This  industry  has 
been  plagued  for  many  years  by 
analyst  firms  that  are  market 
makers.That  is,  they’re  trying  to 
create  high-growth  markets  that 
they  can  follow  and  advise  peo¬ 
ple  about,”  he  says.“Exaggerated 
forecasts  have  been  the  reason 
for  so  many  disappointments  in 
this  industry  and  actually  a  lot  of 
company  failures.” 

Firms  that  are  in  the  business 
of  forecasting  market  sizes  have 
a  lot  of  credibility  to  regain  and 
as  a  result  are  reassessing  their 
forecasting  methodologies, 
Kaplan  says. 

“They’ve  all  been  forced  to 
become  much  more  conserva¬ 
tive,  because  people  do  blame 
them  for  over-expectations  that 
took  place  during  the  Internet 
boom  and  bust,”  he  says.“They 
were  part  of  the  hype  machine 
that  unfortunately  took  a  lot  of 
customers  as  well  as  vendor 
organizations  over  a  cliff.” 

Regaining  trust  of  IT  users  and 
vendors  isn’t  something  that  will 
happen  overnighi.“Most  people  I 
know  both  on  the  user  and  the 
vendor  side  don’t  have  a  lot  of 
faith  in  forecasts  anymore,” 
Kaplan  says. “They’re  kind  of  a 
necessary  evil.”B 


Got  great  idea s? 
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■  Got  a  suggestion  for  a 
Wider  Net  story?  An  offbeat 
network  industry-related 
topic?  A  fascinating  personal¬ 
ity  we  should  profile?  Contact 
Bob  Brown  with  your  ideas  at 
bbrown@nww.com. 


II  No  question  that  no  matter  what  any¬ 
body  says,  this  is  for  the  most  part  more  of 
an  art  than  a  science,  doing  forecasting.  II 

Jeff  Kaplan 

Managing  director,  Thinkstrategies 


■  Network  World  118  Turnpike  Road, 
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BackSpin 


Mark  Gibbs 


The  Big  One: 

L 


ast  week  I  theorized  about  the 
coming  of  The  Big  One,  the 
cyberquake  that  will  count  as  a 
real  megascale  global  online  disaster 
to  the  online  world. 

Reader  Dave  Kaplan  wrote, “Thanks 
for  the  extra  stress  about  horrific 
events  I  have  no  control  over. . .  .This 
may  be  the  soft,  white  underbelly  of  our  civilization.” 

Some  of  you  apparently  think  that  I  meant  the 
entire  ’Net  will  be  wiped  out.  Not  so.  Just  as  the  1918 
influenza  pandemic  didn’t  annihilate  the  human 
race,  nor  will  the  Big  One  annihilate  the  Internet. 

But  what  the  Big  One  will  do  is  cause  such  dam¬ 
age  that  it  will  be  incontrovertibly  a  disaster.  All  we 
need  is,  for  example,  a  worm  implementing  a  pre- 
SP1  Windows  XP  zero-day  exploit  carried  by  e-mail 
that  goes  undetected  for  90  days  before  it  wipes  all 
disks  it  can  see.  Voila!  A  full-fledged  disaster. 

I  received  a  letter  from  reader  Tim  Matson  ex¬ 
pressing  a  view  that  some  of  you  might  share:“I 
read  articles  every  week  from  experts  around  the 
world  who  say  that  the  Big  One  is  just  around  the 
corner. . .  .All  of  the  IT  columnists  screaming  at  the 
top  of  their  collective  lungs  isn’t  going  to  convince 
my  CEO  or  me  that  we  should  spend  a  lot  of  money 
on  responding  to  the  end  of  cyber  [life]  on  this 
planet.  If  you  don’t  have  a  solution  or  at  least  some 


Millions  and  billions 


idea  of  what  the  problem  is,  then  find  something  else 
to  fill  your  column  with.” 

I  think  I’ve  adequately  discussed  the  kind  of  things 
that  might  constitute  the  problem,  but  you  are  cor¬ 
rect, Tim,  I  don’t  have  a  general  solution. That’s  some¬ 
thing  that  each  company  has  to  consider.  It  isn’t 
hard:  Look  at  your  disaster  and  recovery  plan  and 
figure  out  whether  the  disasters  you’ve  considered 
are  of  the  same  scale  as  the  Big  One. 

I’m  trying  to  get  you  thinking  about  the  worst 
worst-case  scenario  rather  than  the  best  worst-case 
scenario,  which  is  what  most  companies  plan  for. 

Some  of  you  wrote  suggesting  that,  like  disease  and 
ecological  disasters  in  the  biological  world,  the  in¬ 
herent  heterogeneity  of  the  Internet  will  provide 
“insulation”  that  will  save  us  from  disaster. 

This  position  was  put  forward  by  reader  Mark 
Cowther:“You  can  put  me  in  the  camp  that  does  not 
think  an  IT  Big  One  is  inevitable. ...  1  see  computer 
networks  as  a  biologist  views  life.  If  a  virus  kills  off 
the  weaker  systems,  then  so  be  it.  I  have  always  advo¬ 
cated  a  mixed  environment. . . .  Some  systems  may 
get  hit,  but  not  all.” 

Reader  Joe  Fernandez  agreed:“lf  there  is  homo¬ 
geneity  and  centralization,  there  is  vulnerability  to  a 
total  wipeout  by  a  single  catastrophic  event.  If  you 
have  diversity  of  species  and  a  distribution  of  the 
members,  you  get  resilience.” 


www.nwfusion.com 


I’m  trying  get  you  thinking  about 
the  worst  worst-case  scenario 
rather  than  the  best  worst-case 
scenario . . . 


Sure,  if  Linux  and  Macs  didn’t  exist  the  Big  One 
would  be  far  more  likely  but  I  have  to  disagree  that 
we  have  anything  even  close  to  enough  diversity  In 
reality  the  majority  of  Internet-connected  systems 
are  remarkably  similar  in  many  important  ways  and 
the  spectrum  of  differences  too  narrow  for  the  paral¬ 
lel  with  biology  to  be  practically  effective. 

But  it  does  seem  that  some  of  you,  however,  al¬ 
ready  plan  to  not  be  part  of  the  disaster.  Reader 
Edward  Fitch  wrote, “There  are  a  few  of  us  that  have 
PCs  that  are  not  connected  to  the  Internet,  [have] 
implemented  secure  computing  and  [limited] 
things  to  such  an  extent  that  only  text  can  get 
through,  with  multiple  layers  of  operating  systems  . . . 
that  would  probably  survive  almost  anything.” 

Way  to  go,  Edward. 

Are  your  survival  plans  as  good  as  Edward's? 
Confessions  to  backspin@gibbs.com. 


zz  News,  insights,  opinions  and  oddities 


By  Paul  McNamara 


Music  to  the  bottom  line 

Mobile  phone  users  worldwide  are 
expected  to  spend  more  than  $3  bil¬ 
lion  this  year  on  ring  tones  . . .  and  I  cannot  help  but  giggle  when  I  type  those 
words. 

Ring  tones,  $3  billion,  kid  you  not. 

And  it  wouldn’t  surprise  me  if  Jay  Emmet,  president  of  mBIox-Americas,  also 
lets  out  a  giggle  now  and  then  when  he  reads  such  predictions.The  difference 
is  that  his  would  be  giddiness  born  not  of  astonishment  but  the  unbridled  joy 
that  comes  with  knowing  your  company  is  among  those  hearing  ka-ching  when¬ 
ever  phones  burst  into  song. 

MBIox  doesn't  actually  sell  ring  tones  —  more  than  100  companies  in  North 
America  and  Europe  do  —  but  it  helps  make  the  music  happen,  among  other 
things. 

“Mblox  is  an  aggregator  in  the  [Short  Message  Service]  space,”  Emmet  says. 
"If  you're  a  ring-tone  company  or  a  ring-tone  provider  and  you  want  to  sell  ring 
tones  to  the  public,  you  can  do  it,  but  you’ll  have  a  problem  connecting  to  all  the 
networks.  You  have  two  choices:  You  can  pursue  individual  contracts  and  con¬ 
nections  dealing  with  the  AT&Ts,T-Mobiles,  etc.  by  yourself,  or  you  can  come 
to  a  single  aggregator  that  has  already  established  those  commercial  and  tech¬ 
nical  relationships.  You  basically  send  all  your  traffic  through  the  front  door; 
you  don't  have  to  maintain  the  high  fixed  costs  of  the  connectivity." 

Ring  tones  typically  cost  a  buck  or  two  per  pop.  And  while  not  as  well  estab¬ 
lished  here  as  in  Europe,  those  buck  or  twos  will  add  up  to  more  than  $300  mil¬ 
lion  in  U.S.  sales  this  year,  a  twofold  increase  over  2004. 

“What’s  particularly  interesting  to  me  is  that  people  are  paying  more  for  ring 
tones  than  they  will  to  buy  the  song  itself  to  download  to  an  iPod,”  Emmet  says. 

Interesting  is  one  word  for  it,  although  not  my  first  choice. 


Ring  tones  are  not  the  only  product  fueling  rapid  growth  in  so-called  premium 
SMS.  News,  various  alerts,  games,  interactiveTV  and  micropayments  for  prod¬ 
ucts  as  mundane  as  a  can  of  soda  are  but  a  handful  of  the  other  drivers. 
Marketing  and  entertainment  companies  are  gorging  themselves  on  schemes 
designed  to  exploit  SMS. 

“I  don’t  want  to  make  it  seem  as  though  SMSing  is  the  next  great,  huge  thing 
that’s  going  to  displace  everything  else  —  it’s  not,"  Emmet  says.  "The  carriers 
see  it  as  a  high-margin,  high-growth  segment  of  their  business.The  people 
with  content  and  products  see  it  as  a  way  to  move  them  to  the  mobile  phone. 
And  I  basically  act  in  the  middle  as  an  aggregator  both  in  terms  of  traffic  flow 
and  the  billing  payout.” 

Despite  the  gaudy  numbers,  momentum  behind  SMS  is  only  beginning  to  gain 
steam.  Emmet  likes  to  point  to  surveys  that  show  80%  of  American  mobile 
phone  users  have  yet  to  send  their  first  SMS  message. 

I  thought  I  heard  a  giggle  when  he  told  me. 

But  hold  the  phone . . . 

It  seems  as  though  Italian  researchers  are  trying  to  rain  on  the  SMS  parade. 
According  to  a  study  from  an  Italian  children’s  rights  organization,  about  a 
third  of  that  country’s  youngsters  are  “cell  phone  addicts.”  One  13-year-old  girl 
was  said  to  have  received  treatment  from  an  orthopedist  —  anti-inflamma¬ 
tories,  ordered  rest  —  after  typing  100  or  more  SMS  missives  per  day. 

Irritability  and  mood  swings  aiso  were  attributed  to  excessive  cell  phone  use, 
the  researchers  found,  although  how  they  identified  a  control  group  of  teens 
who  do  not  exhibit  such  traits  is  beyond  me. 

Moreover,  it  seems  that  these  researchers  might  have  missed  a  bright  side  of 
overdosing  on  SMS:  All  that  furious  typing  is  most  likely  the  most  exercise 
many  of  these  teenagers  get. 

Go  ahead  and  risk  the  injury:  My  address  is  buzz@nww.com. 
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The  Network  is  the  Computer 


TEN  MOVES  AHI  AD 


1.  LINUX  AND  SOLARIS™  OS 

APPLICATIONS  RUN  SIDE-BY-S  DE 


2.  CHOICE  OF  SYSTEMS - 
SPARC®,  AMD  OPTERON 


INTEL 


3.  RUNS  ON  OVER  250  SYSTEMS  FROM 
OTHER  MANUFACTURERS 


5.  MILITARY-GRADE  SECURITY, 

VIRUS-  REE  FOR  THE  LAST  20  YEARS 


6.  GUARANTEED  CO  PATIBILITY 
GUARANTEED  INDEMNITY 


7.  UP  TO  80%  SYSTEM  UTILIZATION 
(NO  MAINFRAME  REQUIRED) 
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